Format: 1.8
Date: Wed, 12 Jan 2022 13:21:48 -0500
Source: pillow
Binary: python-pil python-pil-dbg python-pil.imagetk python-pil.imagetk-dbg python3-pil python3-pil-dbg python3-pil.imagetk python3-pil.imagetk-dbg python-pil-doc
Architecture: ppc64el
Version: 5.1.0-1ubuntu0.7
Distribution: bionic
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-ppc64el-018.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 python-pil - Python Imaging Library (Pillow fork)
 python-pil-dbg - Python Imaging Library (debug extension)
 python-pil-doc - Examples for the Python Imaging Library
 python-pil.imagetk - Python Imaging Library - ImageTk Module (Pillow fork)
 python-pil.imagetk-dbg - Python Imaging Library - ImageTk Module (debug extension)
 python3-pil - Python Imaging Library (Python3)
 python3-pil-dbg - Python Imaging Library (Python3 debug extension)
 python3-pil.imagetk - Python Imaging Library - ImageTk Module (Python3)
 python3-pil.imagetk-dbg - Python Imaging Library - ImageTk Module (Python3 debug extension)
Changes:
 pillow (5.1.0-1ubuntu0.7) bionic-security; urgency=medium
 .
   * SECURITY UPDATE: regular expression DoS
     - debian/patches/CVE-2021-23437.patch: raise ValueError if color
       specifier is too long in Tests/test_imagecolor.py,
       src/PIL/ImageColor.py.
     - CVE-2021-23437
   * SECURITY UPDATE: Dos via buffer overflow
     - debian/patches/CVE-2021-34552.patch: limit sprintf modes to 10
       characters in src/libImaging/Convert.c.
     - CVE-2021-34552
   * SECURITY UPDATE: improper initialization
     - debian/patches/CVE-2022-22815.patch: initialize coordinates to zero
       in src/path.c.
     - CVE-2022-22815
   * SECURITY UPDATE: buffer over-read during initialization
     - debian/patches/CVE-2022-22816.patch: handle case where path count is
       zero in src/path.c.
     - CVE-2022-22816
   * SECURITY UPDATE: evaluation of arbitrary expressions
     - debian/patches/CVE-2022-22817.patch: restrict builtins for
       ImageMath.eval in Tests/test_imagemath.py, src/PIL/ImageMath.py.
     - CVE-2022-22817
Checksums-Sha1:
 8f1bade724b5307ea558dc7fda955479852ae653 12328 pillow_5.1.0-1ubuntu0.7_ppc64el.buildinfo
 507b1985f64f83a50fa7f6d9130cba05ec313c7a 482344 python-pil-dbg_5.1.0-1ubuntu0.7_ppc64el.deb
 590b350dad8926481d8e3b55c0c7a31035da6d22 26056 python-pil.imagetk-dbg_5.1.0-1ubuntu0.7_ppc64el.deb
 b2f1d8931117d801e9242bb0020b8afb2bbf584a 8560 python-pil.imagetk_5.1.0-1ubuntu0.7_ppc64el.deb
 0b902f6661105e8aedee45ad3921b31165c99561 296428 python-pil_5.1.0-1ubuntu0.7_ppc64el.deb
 b2f600769e950b2c248112f080a0448b236e26bd 976524 python3-pil-dbg_5.1.0-1ubuntu0.7_ppc64el.deb
 da68e046572d185730a08b50b5f54b10343e518b 37560 python3-pil.imagetk-dbg_5.1.0-1ubuntu0.7_ppc64el.deb
 a04bcf3b5fa11a666126bda17e3b342f0a54f91f 9472 python3-pil.imagetk_5.1.0-1ubuntu0.7_ppc64el.deb
 708e6dd705295bc51e248636a7b0b471cd325cf2 355348 python3-pil_5.1.0-1ubuntu0.7_ppc64el.deb
Checksums-Sha256:
 42cb9c8f22c65ba502e0955d2440ff4bff19ea5213dbb79cedee262cc815a4af 12328 pillow_5.1.0-1ubuntu0.7_ppc64el.buildinfo
 58cf256b869aad4e4eb057d1662d4972f3da64c89899484b8ff61e3aa9125bd0 482344 python-pil-dbg_5.1.0-1ubuntu0.7_ppc64el.deb
 3d316eb6636425ec87eb8c5ae8117ee90d6dfd001d4ed6bc4b77b70706358290 26056 python-pil.imagetk-dbg_5.1.0-1ubuntu0.7_ppc64el.deb
 7d591e7b059e65fe2116093545a5b0277e4056d7caf039b94d70fbf17069e818 8560 python-pil.imagetk_5.1.0-1ubuntu0.7_ppc64el.deb
 fd4371bfa67e32a2b6455e43d6661745019ef268b147f74c9f42d4a3ed89acf2 296428 python-pil_5.1.0-1ubuntu0.7_ppc64el.deb
 e33d2c01e16c2c2bcb6f52059955cb267e087cbd6834470b787887b596cc0c58 976524 python3-pil-dbg_5.1.0-1ubuntu0.7_ppc64el.deb
 b7f29cb1fe7927f15b221f171462b901739d759575d2a47c732d3d373bd102e3 37560 python3-pil.imagetk-dbg_5.1.0-1ubuntu0.7_ppc64el.deb
 95b754daefddbce188130c9e33f9ca6399d50e9f62cd2b3a2f06cf37a5fbd3cb 9472 python3-pil.imagetk_5.1.0-1ubuntu0.7_ppc64el.deb
 1a17999af9a152a625755fb0609ea338c19e96912656eeee79c7b1d9df104301 355348 python3-pil_5.1.0-1ubuntu0.7_ppc64el.deb
Files:
 d8465acbf528109cdeae80ba49452998 12328 python optional pillow_5.1.0-1ubuntu0.7_ppc64el.buildinfo
 fa8721f0529c2509e26e29c380aad103 482344 debug optional python-pil-dbg_5.1.0-1ubuntu0.7_ppc64el.deb
 08f075ce39aabfb25b96979822c21df9 26056 debug optional python-pil.imagetk-dbg_5.1.0-1ubuntu0.7_ppc64el.deb
 7784cb3368e8a1e8ceb71ee71bc1b149 8560 python optional python-pil.imagetk_5.1.0-1ubuntu0.7_ppc64el.deb
 003207d68dfc41fb0c9cf0326c539e85 296428 python optional python-pil_5.1.0-1ubuntu0.7_ppc64el.deb
 71991a79780065b99d454c2d05bed486 976524 debug optional python3-pil-dbg_5.1.0-1ubuntu0.7_ppc64el.deb
 5bb25cfdba2b119cd1b303692eac6367 37560 debug optional python3-pil.imagetk-dbg_5.1.0-1ubuntu0.7_ppc64el.deb
 91ea7fa7378b1728f012a6fb25f274b0 9472 python optional python3-pil.imagetk_5.1.0-1ubuntu0.7_ppc64el.deb
 67512c895667824173987d2e163b2acf 355348 python optional python3-pil_5.1.0-1ubuntu0.7_ppc64el.deb
Original-Maintainer: Matthias Klose <doko@debian.org>