CVE-2014-9601CVE-2014-9601

Affected configuration(s):

cpe:/a:python:pillow:2.6.2
cpe:/o:fedoraproject:fedora:21
cpe:/o:novell:opensuse:13.2
cpe:/o:oracle:solaris:11.2

Date published: 2015-01-16T11:59:17.123-05:00

Date last modified: 2016-11-28T14:14:07.233-05:00

CVSS Score: 5.0

Principal attack vector: NETWORK

Complexity:  LOW

Reference URL: http://lists.fedoraproject.org/pipermail/package-announce/2015-January/148442.html

Summary: Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is decompressed.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.