CVE-2020-5310

Priority
Description
libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer
overflow, related to realloc.
Assigned-to
leosilva
Notes
Package
Upstream:released (7.0.0-1)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):not-affected
Ubuntu 16.04 LTS (Xenial Xerus):not-affected
Ubuntu 18.04 LTS (Bionic Beaver):not-affected
Ubuntu 19.10 (Eoan Ermine):released (6.1.0-1ubuntu0.2)
Ubuntu 20.04 (Focal Fossa):released (7.0.0-4)
Patches:
Upstream:https://github.com/python-pillow/Pillow/commit/4e2def2539ec13e53a82e06c4b3daf00454100c4
More Information

Updated: 2020-02-07 13:15:35 UTC (commit 9668d5ee82105b27f4ad8ac6f53a5ff5f7a9dad0)