Format: 1.8
Date: Mon, 03 Feb 2020 13:04:40 -0300
Source: pillow
Binary: python-pil python-pil-dbg python-pil.imagetk python-pil.imagetk-dbg python3-pil python3-pil-dbg python3-pil.imagetk python3-pil.imagetk-dbg python-pil-doc
Architecture: ppc64el
Version: 5.1.0-1ubuntu0.2
Distribution: bionic
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-ppc64el-012.buildd>
Changed-By: Leonidas S. Barbosa <leo.barbosa@canonical.com>
Description:
 python-pil - Python Imaging Library (Pillow fork)
 python-pil-dbg - Python Imaging Library (debug extension)
 python-pil-doc - Examples for the Python Imaging Library
 python-pil.imagetk - Python Imaging Library - ImageTk Module (Pillow fork)
 python-pil.imagetk-dbg - Python Imaging Library - ImageTk Module (debug extension)
 python3-pil - Python Imaging Library (Python3)
 python3-pil-dbg - Python Imaging Library (Python3 debug extension)
 python3-pil.imagetk - Python Imaging Library - ImageTk Module (Python3)
 python3-pil.imagetk-dbg - Python Imaging Library - ImageTk Module (Python3 debug extension)
Changes:
 pillow (5.1.0-1ubuntu0.2) bionic-security; urgency=medium
 .
   * SECURITY UPDATE: Exceed memory amount and delay in process image
     - debian/patches/CVE-2019-16865-*.patch: Corrected negative seeks in
       PIL/PsdImagePlugin.py, Added decompression bomb checks in
       PIL/GifImagePlugin.py and PIL/IcoImagePlugin.py, Catch buffer overruns
       in libImaging/PcxDecode.c, libImaging/FliDecode.c and added some tests
       in Tests/images/*.
     - CVE-2019-16865
   * SECURITY UPDATE: Denial of service
     - debian/patches/CVE-2019-19911.patch:  Raise an error for an invalid
       number of bands in FPX image in PIL/FpxImagePlugin.py and added some
       testes in Test/images/*.
     - CVE-2019-19911
   * SECURITY UPDATE: Buffer overflow
     - debian/patches/CVE-2020-5311.patch: catch SGI buffer overruns
       in src/libImaging/SgiRleDecode.c.
     - CVE-2020-5311
   * SECURITY UPDATE: Buffer overflow
     - debian/patches/CVE-2020-5312.patch: Catch PCX P mode buffer overrun
       in libImaging/PcxDecode.c and added some tests in Test/images/*.
     - CVE-2020-5312
   * SECURITY UPDATE: Buffer overflow
     - debian/patches/CVE-2020-5313.patch: catch FLI buffer overrun in
       libImaging/FliDecode.c and added some tests in Test/images/*.
     - CVE-2020-5313
Checksums-Sha1:
 1da6fa21a51bdbcc359491008c3e9a4b372a7efc 12185 pillow_5.1.0-1ubuntu0.2_ppc64el.buildinfo
 dc5cb70216a66a9694ceb6262bcb7ef2e0b603e5 760360 python-pil-dbg_5.1.0-1ubuntu0.2_ppc64el.deb
 6010b38223be34f380ec6a12b2b721194918c348 30436 python-pil.imagetk-dbg_5.1.0-1ubuntu0.2_ppc64el.deb
 aab1e17d5cf98fb7667e63c3fc7c96f55523df54 9244 python-pil.imagetk_5.1.0-1ubuntu0.2_ppc64el.deb
 77b188c2735e04315fbcbd35ccd9b61262ea9329 352668 python-pil_5.1.0-1ubuntu0.2_ppc64el.deb
 edf248432d7c4c72c70470f60255fe70f2f7323c 972728 python3-pil-dbg_5.1.0-1ubuntu0.2_ppc64el.deb
 d2a8514853a3b3eaacace2553510c866bb7161c4 37360 python3-pil.imagetk-dbg_5.1.0-1ubuntu0.2_ppc64el.deb
 56373cbcdcd05d4cda74da9cb0f5a4da4d8890fe 9468 python3-pil.imagetk_5.1.0-1ubuntu0.2_ppc64el.deb
 d2096e3251f19de882a79d1063e951a4d963c92b 353312 python3-pil_5.1.0-1ubuntu0.2_ppc64el.deb
Checksums-Sha256:
 e6090eed8bcc66af452c1e0dc5fa0736eebe728ab6a7824cb3f9d45ea8eb98f0 12185 pillow_5.1.0-1ubuntu0.2_ppc64el.buildinfo
 9684932f5f9f5fb232bd58d2cf3a6e872c7ecee4f908e51a29aa127a4124e5f0 760360 python-pil-dbg_5.1.0-1ubuntu0.2_ppc64el.deb
 6de3773b9993cffce62ce9bfa629a998f93d153672e5bfea413741c712bc0f21 30436 python-pil.imagetk-dbg_5.1.0-1ubuntu0.2_ppc64el.deb
 07f09ba53d50f3b9fe322dc245936c6258ec1f5066b9cd74bed61e0ef4433870 9244 python-pil.imagetk_5.1.0-1ubuntu0.2_ppc64el.deb
 1f41bba94a46c315a2d5c40d3902cdb6f7cda236fc442314a09d0ee54bc061fe 352668 python-pil_5.1.0-1ubuntu0.2_ppc64el.deb
 28c25a9a9d3513e2c33f479cc3c7f838f7a541d331e47c826c0cfb8c1346282e 972728 python3-pil-dbg_5.1.0-1ubuntu0.2_ppc64el.deb
 5ccd267a8f1e34b58b74a126f6cd4d15d2306a17d5dda738d7c9b9fbfddaad25 37360 python3-pil.imagetk-dbg_5.1.0-1ubuntu0.2_ppc64el.deb
 d2aeeff0c6b31ee4fad53f730828e58d8e0a3831afbf095610599a11d92ce42d 9468 python3-pil.imagetk_5.1.0-1ubuntu0.2_ppc64el.deb
 f64fa47e2a9d53a6eaa077dd359d1842b7f254732a5b5c500bc2fc69731c31cf 353312 python3-pil_5.1.0-1ubuntu0.2_ppc64el.deb
Files:
 26e209154b15d213dd2db1870c6e57af 12185 python optional pillow_5.1.0-1ubuntu0.2_ppc64el.buildinfo
 65a08d3fc6d66cd14b4c53f53c54fefe 760360 debug optional python-pil-dbg_5.1.0-1ubuntu0.2_ppc64el.deb
 885c28ae33b095fa06319746a5fdbedf 30436 debug optional python-pil.imagetk-dbg_5.1.0-1ubuntu0.2_ppc64el.deb
 10ea33ac64bcb8caad958573a6b1628c 9244 python optional python-pil.imagetk_5.1.0-1ubuntu0.2_ppc64el.deb
 aa9ec477d36f2860c16d1d5ef89666df 352668 python optional python-pil_5.1.0-1ubuntu0.2_ppc64el.deb
 ebab66dd2f3a739cdbf7b5634840ce05 972728 debug optional python3-pil-dbg_5.1.0-1ubuntu0.2_ppc64el.deb
 169f7df6c2910e79ddc4d2d3a80e488f 37360 debug optional python3-pil.imagetk-dbg_5.1.0-1ubuntu0.2_ppc64el.deb
 41ad567ebf81884b97d58c33d3ef668d 9468 python optional python3-pil.imagetk_5.1.0-1ubuntu0.2_ppc64el.deb
 0e300748c01114047c569024873d6fe1 353312 python optional python3-pil_5.1.0-1ubuntu0.2_ppc64el.deb
Original-Maintainer: Matthias Klose <doko@debian.org>