FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-22 18:21:47 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
6ea60e00-cf13-11e5-805c-5453ed2e2b49	py-imaging, py-pillow -- Buffer overflow in FLI decoding code The Pillow maintainers report: In all versions of Pillow, dating back at least to the last PIL 1.1.7 release, FliDecode.c has a buffer overflow error. There is a memcpy error where x is added to a target buffer address. X is used in several internal temporary variable roles, but can take a value up to the width of the image. Im->image[y] is a set of row pointers to segments of memory that are the size of the row. At the max y, this will write the contents of the line off the end of the memory buffer, causing a segfault. This issue was found by Alyssa Besseling at Atlassian. Discovery 2016-02-05 Entry 2016-02-09 py27-pillow py33-pillow py34-pillow py35-pillow < 2.9.0_1 py27-imaging < 1.1.7_6 CVE-2016-0775 https://github.com/python-pillow/Pillow/commit/bcaaf97f4ff25b3b5b9e8efeda364e17e80858ec
a8de962a-cf15-11e5-805c-5453ed2e2b49	py-imaging, py-pillow -- Buffer overflow in PCD decoder The Pillow maintainers report: In all versions of Pillow, dating back at least to the last PIL 1.1.7 release, PcdDecode.c has a buffer overflow error. The state.buffer for PcdDecode.c is allocated based on a 3 bytes per pixel sizing, where PcdDecode.c wrote into the buffer assuming 4 bytes per pixel. This writes 768 bytes beyond the end of the buffer into other Python object storage. In some cases, this causes a segfault, in others an internal Python malloc error. Discovery 2016-02-02 Entry 2016-02-09 py27-pillow py33-pillow py34-pillow py35-pillow < 2.9.0_1 py27-imaging < 1.1.7_6 http://openwall.com/lists/oss-security/2016/02/02/5 https://github.com/python-pillow/Pillow/commit/ae453aa18b66af54e7ff716f4ccb33adca60afd4 https://github.com/python-pillow/Pillow/issues/568

VuXML ID

Description

6ea60e00-cf13-11e5-805c-5453ed2e2b49

py-imaging, py-pillow -- Buffer overflow in FLI decoding code

The Pillow maintainers report:

In all versions of Pillow, dating back at least to the last PIL 1.1.7 release, FliDecode.c has a buffer overflow error.

There is a memcpy error where x is added to a target buffer address. X is used in several internal temporary variable roles, but can take a value up to the width of the image. Im->image[y] is a set of row pointers to segments of memory that are the size of the row. At the max y, this will write the contents of the line off the end of the memory buffer, causing a segfault.

This issue was found by Alyssa Besseling at Atlassian.

Discovery 2016-02-05
Entry 2016-02-09
py27-pillow
py33-pillow
py34-pillow
py35-pillow

< 2.9.0_1

py27-imaging

< 1.1.7_6

CVE-2016-0775
https://github.com/python-pillow/Pillow/commit/bcaaf97f4ff25b3b5b9e8efeda364e17e80858ec

a8de962a-cf15-11e5-805c-5453ed2e2b49

py-imaging, py-pillow -- Buffer overflow in PCD decoder

The Pillow maintainers report:

In all versions of Pillow, dating back at least to the last PIL 1.1.7 release, PcdDecode.c has a buffer overflow error.

The state.buffer for PcdDecode.c is allocated based on a 3 bytes per pixel sizing, where PcdDecode.c wrote into the buffer assuming 4 bytes per pixel. This writes 768 bytes beyond the end of the buffer into other Python object storage. In some cases, this causes a segfault, in others an internal Python malloc error.

Discovery 2016-02-02
Entry 2016-02-09
py27-pillow
py33-pillow
py34-pillow
py35-pillow

< 2.9.0_1

py27-imaging

< 1.1.7_6

http://openwall.com/lists/oss-security/2016/02/02/5
https://github.com/python-pillow/Pillow/commit/ae453aa18b66af54e7ff716f4ccb33adca60afd4
https://github.com/python-pillow/Pillow/issues/568