Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2016-0740

Buffer overflow in the ImagingLibTiffDecode function in libImaging/TiffDecode.c in Pillow before 3.1.1 allows remote attackers to overwrite memory via a crafted TIFF file.

Related bugs and status

CVE-2016-0740 (Candidate) is related to these bugs:

Bug #1542095: Upgrade to at least 3.1.1 from February 2016

Summary				In	Importance	Status
	1542095	Upgrade to at least 3.1.1 from February 2016		pillow (Ubuntu)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.debian.org/...
MISC: https://security.gento...
MISC: https://github.com/pyt...
MISC: https://github.com/pyt...