-
Notifications
You must be signed in to change notification settings - Fork 60
/
PYSEC-2020-83.yaml
114 lines (114 loc) · 2.16 KB
/
PYSEC-2020-83.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
id: PYSEC-2020-83
details: libImaging/PcxDecode.c in Pillow before 6.2.2 has a PCX P mode buffer overflow.
aliases:
- CVE-2020-5312
modified: '2020-07-10T17:09:00Z'
published: '2020-01-03T01:15:00Z'
references:
- type: WEB
url: https://pillow.readthedocs.io/en/stable/releasenotes/6.2.2.html
- type: WEB
url: https://github.com/python-pillow/Pillow/commit/93b22b846e0269ee9594ff71a72bec02d2bea8fd
- type: WEB
url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2MMU3WT2X64GS5WHDPKKC2WZA7UIIQ3A/
- type: WEB
url: https://usn.ubuntu.com/4272-1/
- type: WEB
url: https://access.redhat.com/errata/RHSA-2020:0566
- type: WEB
url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3DUMIBUYGJRAVJCTFUWBRLVQKOUTVX5P/
- type: WEB
url: https://www.debian.org/security/2020/dsa-4631
- type: WEB
url: https://access.redhat.com/errata/RHSA-2020:0580
- type: WEB
url: https://access.redhat.com/errata/RHSA-2020:0578
- type: WEB
url: https://access.redhat.com/errata/RHSA-2020:0683
- type: WEB
url: https://access.redhat.com/errata/RHSA-2020:0681
- type: WEB
url: https://access.redhat.com/errata/RHSA-2020:0694
affected:
- package:
name: pillow
ecosystem: PyPI
ranges:
- type: GIT
repo: https://github.com/python-pillow/Pillow
events:
- introduced: '0'
- fixed: 93b22b846e0269ee9594ff71a72bec02d2bea8fd
- type: ECOSYSTEM
events:
- introduced: '0'
- fixed: 6.2.2
versions:
- '1.0'
- '1.1'
- '1.2'
- '1.3'
- '1.4'
- '1.5'
- '1.6'
- 1.7.0
- 1.7.1
- 1.7.2
- 1.7.3
- 1.7.4
- 1.7.5
- 1.7.6
- 1.7.7
- 1.7.8
- 2.0.0
- 2.1.0
- 2.2.0
- 2.2.1
- 2.2.2
- 2.3.0
- 2.3.1
- 2.3.2
- 2.4.0
- 2.5.0
- 2.5.1
- 2.5.2
- 2.5.3
- 2.6.0
- 2.6.1
- 2.6.2
- 2.7.0
- 2.8.0
- 2.8.1
- 2.8.2
- 2.9.0
- 3.0.0
- 3.1.0rc1
- 3.1.0.rc1
- 3.1.0
- 3.1.1
- 3.1.2
- 3.2.0
- 3.3.0
- 3.3.1
- 3.3.2
- 3.3.3
- 3.4.0
- 3.4.1
- 3.4.2
- 4.0.0
- 4.1.0
- 4.1.1
- 4.2.0
- 4.2.1
- 4.3.0
- 5.0.0
- 5.1.0
- 5.2.0
- 5.3.0
- 5.4.0.dev0
- 5.4.0
- 5.4.1
- 6.0.0
- 6.1.0
- 6.2.0
- 6.2.1