Format: 1.8
Date: Tue, 18 May 2021 07:33:36 -0400
Source: pillow
Binary: python-pil python-pil-dbg python-pil.imagetk python-pil.imagetk-dbg python3-pil python3-pil-dbg python3-pil.imagetk python3-pil.imagetk-dbg python-pil-doc
Architecture: s390x
Version: 5.1.0-1ubuntu0.6
Distribution: bionic
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-s390x-013.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 python-pil - Python Imaging Library (Pillow fork)
 python-pil-dbg - Python Imaging Library (debug extension)
 python-pil-doc - Examples for the Python Imaging Library
 python-pil.imagetk - Python Imaging Library - ImageTk Module (Pillow fork)
 python-pil.imagetk-dbg - Python Imaging Library - ImageTk Module (debug extension)
 python3-pil - Python Imaging Library (Python3)
 python3-pil-dbg - Python Imaging Library (Python3 debug extension)
 python3-pil.imagetk - Python Imaging Library - ImageTk Module (Python3)
 python3-pil.imagetk-dbg - Python Imaging Library - ImageTk Module (Python3 debug extension)
Changes:
 pillow (5.1.0-1ubuntu0.6) bionic-security; urgency=medium
 .
   * SECURITY UPDATE: OOB read in Jpeg2KDecode
     - debian/patches/CVE-2021-25287_8.patch: handle different widths for
       each band in src/libImaging/Jpeg2KDecode.c.
     - CVE-2021-25287
     - CVE-2021-25288
   * SECURITY UPDATE: DOS in PsdImagePlugin
     - debian/patches/CVE-2021-28675.patch: sanity check the number of
       input layers in Tests/test_decompression_bomb.py,
       Tests/test_file_apng.py, Tests/test_file_blp.py,
       Tests/test_file_tiff.py, src/PIL/ImageFile.py,
       src/PIL/PsdImagePlugin.py.
     - CVE-2021-28675
   * SECURITY UPDATE: FLI DOS
     - debian/patches/CVE-2021-28676.patch: check the block advance in
       src/libImaging/FliDecode.c.
     - CVE-2021-28676
   * SECURITY UPDATE: EPS DOS on _open
     - debian/patches/CVE-2021-28677.patch: properly handle line endings in
       src/PIL/EpsImagePlugin.py.
     - CVE-2021-28677
   * SECURITY UPDATE: BLP DOS
     - debian/patches/CVE-2021-28678.patch: check that reads return data in
       src/PIL/BlpImagePlugin.py.
     - CVE-2021-28678
Checksums-Sha1:
 83a38a16b9858ee8d9725588db073423269e69ad 12117 pillow_5.1.0-1ubuntu0.6_s390x.buildinfo
 2a714e35149319bb16ba145787e1ce6126b233e4 527312 python-pil-dbg_5.1.0-1ubuntu0.6_s390x.deb
 5130b977a7bbebba2ccec075d713c78a869d46ce 26760 python-pil.imagetk-dbg_5.1.0-1ubuntu0.6_s390x.deb
 9a8edc4a6b8f2c747f3e94328fd6bceeff444e67 8464 python-pil.imagetk_5.1.0-1ubuntu0.6_s390x.deb
 65f7adc11fd3cfe8835bebb70dfae519c8443088 297268 python-pil_5.1.0-1ubuntu0.6_s390x.deb
 1340c22acccd49e24c79d99f4c9b2b3956934006 965148 python3-pil-dbg_5.1.0-1ubuntu0.6_s390x.deb
 4f8b4d08c8031d99c3e4adc1159974a3467fab48 35640 python3-pil.imagetk-dbg_5.1.0-1ubuntu0.6_s390x.deb
 2be2886bf0ddd0638dc762bc85bb333841ab3c80 8540 python3-pil.imagetk_5.1.0-1ubuntu0.6_s390x.deb
 8d0ace413814695a13be0c08effffd0b307d8ad9 323452 python3-pil_5.1.0-1ubuntu0.6_s390x.deb
Checksums-Sha256:
 c0595f2c8b8ccc558dde22749a61dbcaab81614e39a680832bb348c5c6a8ffa4 12117 pillow_5.1.0-1ubuntu0.6_s390x.buildinfo
 faa1d4857d72b59d74909c63f97f5b0c21d5bbb670252094a6d4ae463e498f47 527312 python-pil-dbg_5.1.0-1ubuntu0.6_s390x.deb
 45e51a720f901214da412f3b87f8c9a07a6745f48087dc0a24cec3ff711a1b65 26760 python-pil.imagetk-dbg_5.1.0-1ubuntu0.6_s390x.deb
 6960f8a643a08aecfb7a604caf28670b18eb9e2d8d17be88473b26cf5e85db4d 8464 python-pil.imagetk_5.1.0-1ubuntu0.6_s390x.deb
 0e5c1e64292f18b77d73dfe6e26d53d42b79820d0258e2596ceeafa4e5e55d28 297268 python-pil_5.1.0-1ubuntu0.6_s390x.deb
 36b5ceceb036e71f370823093173cf55737a819a8fec0d435cf6ec018b6aeaeb 965148 python3-pil-dbg_5.1.0-1ubuntu0.6_s390x.deb
 4c1408fa402108e9716e84952ee2a743f77abceee31dd43f1d0a10035a61540e 35640 python3-pil.imagetk-dbg_5.1.0-1ubuntu0.6_s390x.deb
 a256aa7fc2e4a4ca136bf2d298ec9778e77e3ea0d8aef6ecc9e304083649c83e 8540 python3-pil.imagetk_5.1.0-1ubuntu0.6_s390x.deb
 cebc2d3ec0aa58852fb0d3a8515dc8fb6fd98eb720e379de26f76d0522f4ea58 323452 python3-pil_5.1.0-1ubuntu0.6_s390x.deb
Files:
 29cfe4b679924a919b927115a92d34a7 12117 python optional pillow_5.1.0-1ubuntu0.6_s390x.buildinfo
 a0959af70726210b2124232eb1ceedbf 527312 debug optional python-pil-dbg_5.1.0-1ubuntu0.6_s390x.deb
 f43fef13c19d1fd1cfc57a6fda99eb7b 26760 debug optional python-pil.imagetk-dbg_5.1.0-1ubuntu0.6_s390x.deb
 8def43dbd1db9dbe57a66aaf28b7e8e4 8464 python optional python-pil.imagetk_5.1.0-1ubuntu0.6_s390x.deb
 8dbe1bab995211a15220e259f0a80a55 297268 python optional python-pil_5.1.0-1ubuntu0.6_s390x.deb
 0eea9900a5a8259944482bc98579765c 965148 debug optional python3-pil-dbg_5.1.0-1ubuntu0.6_s390x.deb
 c0681d79079d253575c15160f5e41fe9 35640 debug optional python3-pil.imagetk-dbg_5.1.0-1ubuntu0.6_s390x.deb
 67a141fcd393769d549dc47b4029f205 8540 python optional python3-pil.imagetk_5.1.0-1ubuntu0.6_s390x.deb
 86acbc136fdee321fb062c6450a0f0f1 323452 python optional python3-pil_5.1.0-1ubuntu0.6_s390x.deb
Original-Maintainer: Matthias Klose <doko@debian.org>