ELSA-2020-0580

ULN >
Oracle Linux Errata repository >
ELSA-2020-0580

ELSA-2020-0580 - python-pillow security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2020-02-25

Description

[5.1.1-10]
- Bump and rebuild for gating to deliver CVE fixes
Resolves: rhbz#1789535

[5.1.1-9]
- Fix for CVE-2020-5311 - out-of-bounds write in expandrow
Resolves: rhbz#1789535

[5.1.1-8]
- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066

Related CVEs

CVE-2020-5312

CVE-2019-16865

CVE-2020-5311

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	python-pillow-5.1.1-10.el8_1.src.rpm	af1258cd749360d058d827284e2cb3f7587a72e986ced3023e5e90cba25f2c86	-	ol8_aarch64_appstream
	python3-pillow-5.1.1-10.el8_1.aarch64.rpm	955d5b79598330b590b2a6a449348eb0ae84d0302daa82bc6200b7e70ad7ccd4	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	python-pillow-5.1.1-10.el8_1.src.rpm	af1258cd749360d058d827284e2cb3f7587a72e986ced3023e5e90cba25f2c86	-	ol8_x86_64_appstream
	python3-pillow-5.1.1-10.el8_1.x86_64.rpm	9c6dc8b8eb32b33d82450373d4c1663ad65c143cbe3d284f08e0665ec66f26d8	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691