[ubuntu/trusty-proposed] pillow 2.3.0-1ubuntu3 (Accepted)

Mon Mar 31 21:13:44 UTC 2014

pillow (2.3.0-1ubuntu3) trusty; urgency=medium

  * SECURITY UPDATE: insecure use of temporary files
    - debian/patches/CVE-2014-193x.patch: use tempfile.mkstemp() in
      PIL/EpsImagePlugin.py, PIL/Image.py, PIL/IptcImagePlugin.py,
      PIL/JpegImagePlugin.py.
    - CVE-2014-1932
    - CVE-2014-1933

Date: Mon, 31 Mar 2014 10:07:00 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/trusty/+source/pillow/2.3.0-1ubuntu3
-------------- next part --------------
Format: 1.8
Date: Mon, 31 Mar 2014 10:07:00 -0400
Source: pillow
Binary: python-pil python-pil-dbg python-pil.imagetk python-pil.imagetk-dbg python-sane python-sane-dbg python3-pil python3-pil-dbg python3-pil.imagetk python3-pil.imagetk-dbg python3-sane python3-sane-dbg python-pil-doc python-imaging python-imaging-compat python-imaging-dbg python-imaging-tk python-imaging-tk-dbg python-imaging-sane python-imaging-sane-dbg python3-imaging python3-imaging-dbg python3-imaging-tk python3-imaging-tk-dbg python3-imaging-sane python3-imaging-sane-dbg python-imaging-doc
Architecture: source
Version: 2.3.0-1ubuntu3
Distribution: trusty
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 python-imaging - Python Imaging Library compatibility layer
 python-imaging-compat - Dummy transitional package
 python-imaging-dbg - Dummy transitional package
 python-imaging-doc - Dummy transitional package
 python-imaging-sane - Dummy transitional package
 python-imaging-sane-dbg - Dummy transitional package
 python-imaging-tk - Dummy transitional package
 python-imaging-tk-dbg - Dummy transitional package
 python-pil - Python Imaging Library (Pillow fork)
 python-pil-dbg - Python Imaging Library (debug extension)
 python-pil-doc - Examples for the Python Imaging Library
 python-pil.imagetk - Python Imaging Library - ImageTk Module (Pillow fork)
 python-pil.imagetk-dbg - Python Imaging Library - ImageTk Module (debug extension)
 python-sane - Python Imaging Library - SANE interface (Pillow fork)
 python-sane-dbg - Python Imaging Library - SANE interface (debug extension)
 python3-imaging - Dummy transitional package
 python3-imaging-dbg - Dummy transitional package
 python3-imaging-sane - Dummy transitional package
 python3-imaging-sane-dbg - Dummy transitional package
 python3-imaging-tk - Dummy transitional package
 python3-imaging-tk-dbg - Dummy transitional package
 python3-pil - Python Imaging Library (Python3)
 python3-pil-dbg - Python Imaging Library (Python3 debug extension)
 python3-pil.imagetk - Python Imaging Library - ImageTk Module (Python3)
 python3-pil.imagetk-dbg - Python Imaging Library - ImageTk Module (Python3 debug extension)
 python3-sane - Python Imaging Library - SANE interface (Python3)
 python3-sane-dbg - Python Imaging Library - SANE interface (Python3 debug extension)
Changes: 
 pillow (2.3.0-1ubuntu3) trusty; urgency=medium
 .
   * SECURITY UPDATE: insecure use of temporary files
     - debian/patches/CVE-2014-193x.patch: use tempfile.mkstemp() in
       PIL/EpsImagePlugin.py, PIL/Image.py, PIL/IptcImagePlugin.py,
       PIL/JpegImagePlugin.py.
     - CVE-2014-1932
     - CVE-2014-1933
Checksums-Sha1: 
 a84e3025176d5c03a56988f004f3ad0536764368 3595 pillow_2.3.0-1ubuntu3.dsc
 63d435ac8341429b7f368821135f6a88454d176f 16612 pillow_2.3.0-1ubuntu3.debian.tar.gz
Checksums-Sha256: 
 eaf8910c6ef7da698484eaf06e7777a497c6b2fcb30580606a35679a8dae0115 3595 pillow_2.3.0-1ubuntu3.dsc
 0ac2d7749ce22dd3bf551409a3634d8a641edd9a902c55e823336844f5697a6b 16612 pillow_2.3.0-1ubuntu3.debian.tar.gz
Files: 
 aeaa0ad4d3974d499aea071f09ac81b6 3595 python optional pillow_2.3.0-1ubuntu3.dsc
 0360ac7f7e476cbba691dae39eb9b1ef 16612 python optional pillow_2.3.0-1ubuntu3.debian.tar.gz
Original-Maintainer: Matthias Klose <doko at debian.org>