From emily.ratliff at canonical.com Tue Sep 27 19:29:16 2016 From: emily.ratliff at canonical.com (Emily Ratliff) Date: Tue, 27 Sep 2016 19:29:16 -0000 Subject: [ubuntu/wily-security] pillow 2.9.0-1ubuntu0.2 (Accepted) Message-ID: <20160927192916.26221.71394.launchpad@ackee.canonical.com> pillow (2.9.0-1ubuntu0.2) wily-security; urgency=medium * SECURITY UPDATE: buffer overflow in ImagingFliDecode() - debian/patches/pillow-CVE-2016-0775.patch: correct memcpy location - debian/source/include-binaries: add test image in Tests/images/fli_overflow.fli - CVE-2016-0775 * SECURITY UPDATE: buffer overflow in ImagingLibTiffDecode - debian/patches/pillow-CVE-2016-0740.patch: correct type of size to match that returned by libtiff - debian/source/include-binaries: add test image in Tests/images/libtiff_segfault.tif - CVE-2016-0740 * SECURITY UPDATE: integer overflow in ImagingResampleHorizontal() - debian/patches/pillow-gh#1714.patch: check for integer overflow * SECURITY UPDATE: PCD decoder overruns the shuffle buffer - debian/patches/pillow-gh#1706.patch: correct size adjustments - CVE-2016-2533 Date: 2016-03-12 13:32:23.246318+00:00 Changed-By: Steve Beattie Signed-By: Emily Ratliff https://launchpad.net/ubuntu/+source/pillow/2.9.0-1ubuntu0.2 -------------- next part -------------- Sorry, changesfile not available. From cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk Tue Sep 27 20:28:11 2016 From: cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk (Ubuntu Archive Robot) Date: Tue, 27 Sep 2016 20:28:11 -0000 Subject: [ubuntu/wily-updates] pillow 2.9.0-1ubuntu0.2 (Accepted) Message-ID: <20160927202811.26221.32937.launchpad@ackee.canonical.com> pillow (2.9.0-1ubuntu0.2) wily-security; urgency=medium * SECURITY UPDATE: buffer overflow in ImagingFliDecode() - debian/patches/pillow-CVE-2016-0775.patch: correct memcpy location - debian/source/include-binaries: add test image in Tests/images/fli_overflow.fli - CVE-2016-0775 * SECURITY UPDATE: buffer overflow in ImagingLibTiffDecode - debian/patches/pillow-CVE-2016-0740.patch: correct type of size to match that returned by libtiff - debian/source/include-binaries: add test image in Tests/images/libtiff_segfault.tif - CVE-2016-0740 * SECURITY UPDATE: integer overflow in ImagingResampleHorizontal() - debian/patches/pillow-gh#1714.patch: check for integer overflow * SECURITY UPDATE: PCD decoder overruns the shuffle buffer - debian/patches/pillow-gh#1706.patch: correct size adjustments - CVE-2016-2533 Date: 2016-03-12 13:32:23.246318+00:00 Changed-By: Steve Beattie Signed-By: Ubuntu Archive Robot https://launchpad.net/ubuntu/+source/pillow/2.9.0-1ubuntu0.2 -------------- next part -------------- Sorry, changesfile not available.