ELSA-2020-3887

ULN >
Oracle Linux Errata repository >
ELSA-2020-3887

ELSA-2020-3887 - python-pillow security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2020-10-06

Description

[2.0.0-21gitd1c6db8]
- Fix for CVE-2020-5313
Resolves: rhbz#1789532

[2.0.0-20gitd1c6db8]
- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066

[2.0.0-19gitd1c6db8]
- Reenabled webp support on little endian archs.

[2.0.0-18gitd1c6db8]
- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.

[2.0.0-17gitd1c6db8]
- Wiped out some memory leaks.

[2.0.0-15.gitd1c6db8]
- Mass rebuild 2014-01-24

[2.0.0-14gitd1c6db8]
- Fixed memory corruption.
- Resolves: rhbz#1001122

[2.0.0-13.gitd1c6db8]
- Mass rebuild 2013-12-27

[2.0.0-12]
- Mark doc subpackage arch dependent. Docs are built depending on supported
features, which are different across archs.
Resolves: rhbz#987839

[2.0.0-11]
- Drop lcms support
Resolves: rhbz#987839

[2.0.0-10]
- Build without webp support on s390* archs
Resolves: rhbz#962059

[2.0.0-9.gitd1c6db8]
- Conditionaly disable build of python3 parts on RHEL system

[2.0.0-8.gitd1c6db8]
- Add patch to fix test failure on big-endian

[2.0.0-7.gitd1c6db8]
- Remove Obsoletes in the python-pillow-qt subpackage. Obsoletes isnt
appropriate since qt support didnt exist in the previous python-pillow
package so theres no reason to drag in python-pillow-qt when updating
python-pillow.

[2.0.0-6.gitd1c6db8]
- Update to latest git
- python-pillow_quantization.patch now upstream
- python-pillow_endianness.patch now upstream
- Add subpackage for ImageQt module, with correct dependencies
- Add PyQt4 and numpy BR (for generating docs / running tests)

[2.0.0-5.git93a488e]
- Reenable tests on bigendian, add patches for #928927

[2.0.0-4.git93a488e]
- Update to latest git
- disable tests on bigendian (PPC*, S390*) until rhbz#928927 is fixed

[2.0.0-3.gitde210a2]
- python-pillow_tempfile.patch now upstream
- Add python3-imaging provides (bug #924867)

[2.0.0-2.git2e88848]
- Update to latest git
- Remove python-pillow-disable-test.patch, gcc is now fixed
- Add python-pillow_tempfile.patch to prevent a temporary file from getting packaged

[2.0.0-1.git2f4207c]
- Update to 2.0.0 git snapshot
- Enable python3 packages
- Add libwebp-devel BR for Pillow 2.0.0

[1.7.8-6.20130305git]
- Add ARM support

[1.7.8-5.20130305git]
- add s390* and ppc* to arch detection

[1.7.8-4.20130305git7866759]
- Update to latest git snapshot
- 0001-Cast-hash-table-values-to-unsigned-long.patch now upstream
- Pillow-1.7.8-selftest.patch now upstream

[1.7.8-3.20130210gite09ff61]
- Really remove -fno-strict-aliasing
- Place comment on how to retreive source just above the Source0 line

[1.7.8-2.20130210gite09ff61]
- Rebuild without -fno-strict-aliasing
- Add patch for upstream issue #52

[1.7.8-1.20130210gite09ff61]
- Initial RPM package

Related CVEs

CVE-2020-5313

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (aarch64)	python-pillow-2.0.0-21.gitd1c6db8.el7.src.rpm	361d96a7c98cae9fd42bb9fd50bcc827ca152fcecf9f1364bc3130c370a7eaad	ELSA-2024-0857	ol7_aarch64_beta
	python-pillow-2.0.0-21.gitd1c6db8.el7.src.rpm	361d96a7c98cae9fd42bb9fd50bcc827ca152fcecf9f1364bc3130c370a7eaad	ELSA-2024-0857	ol7_aarch64_latest
	python-pillow-2.0.0-21.gitd1c6db8.el7.src.rpm	361d96a7c98cae9fd42bb9fd50bcc827ca152fcecf9f1364bc3130c370a7eaad	ELSA-2024-0857	ol7_aarch64_optional_beta
	python-pillow-2.0.0-21.gitd1c6db8.el7.src.rpm	361d96a7c98cae9fd42bb9fd50bcc827ca152fcecf9f1364bc3130c370a7eaad	ELSA-2024-0857	ol7_aarch64_optional_latest
	python-pillow-2.0.0-21.gitd1c6db8.el7.src.rpm	361d96a7c98cae9fd42bb9fd50bcc827ca152fcecf9f1364bc3130c370a7eaad	ELSA-2024-0857	ol7_aarch64_u9_base
	python-pillow-2.0.0-21.gitd1c6db8.el7.aarch64.rpm	0b7de94b7c5c219768c09fd06fab19194365057dd7d21870cb4a2916a0b77571	ELSA-2024-0857	ol7_aarch64_beta
	python-pillow-2.0.0-21.gitd1c6db8.el7.aarch64.rpm	0b7de94b7c5c219768c09fd06fab19194365057dd7d21870cb4a2916a0b77571	ELSA-2024-0857	ol7_aarch64_latest
	python-pillow-2.0.0-21.gitd1c6db8.el7.aarch64.rpm	0b7de94b7c5c219768c09fd06fab19194365057dd7d21870cb4a2916a0b77571	ELSA-2024-0857	ol7_aarch64_u9_base
	python-pillow-devel-2.0.0-21.gitd1c6db8.el7.aarch64.rpm	26316ea0e43bf1249abe8013693a463db7b1ceef3f598592be0d093a34b043fc	ELSA-2024-0857	ol7_aarch64_optional_beta
	python-pillow-devel-2.0.0-21.gitd1c6db8.el7.aarch64.rpm	26316ea0e43bf1249abe8013693a463db7b1ceef3f598592be0d093a34b043fc	ELSA-2024-0857	ol7_aarch64_optional_latest
	python-pillow-doc-2.0.0-21.gitd1c6db8.el7.aarch64.rpm	2e97125adfe6708f88c52cd3f02bb665440db765cfda7577aaf665c4ab3f6472	ELSA-2024-0857	ol7_aarch64_optional_beta
	python-pillow-doc-2.0.0-21.gitd1c6db8.el7.aarch64.rpm	2e97125adfe6708f88c52cd3f02bb665440db765cfda7577aaf665c4ab3f6472	ELSA-2024-0857	ol7_aarch64_optional_latest
	python-pillow-qt-2.0.0-21.gitd1c6db8.el7.aarch64.rpm	0da480aa6b15b742ef13d83c645744aac8649168225d4c927e2ba982aa08cf22	ELSA-2024-0857	ol7_aarch64_optional_beta
	python-pillow-qt-2.0.0-21.gitd1c6db8.el7.aarch64.rpm	0da480aa6b15b742ef13d83c645744aac8649168225d4c927e2ba982aa08cf22	ELSA-2024-0857	ol7_aarch64_optional_latest
	python-pillow-sane-2.0.0-21.gitd1c6db8.el7.aarch64.rpm	335b5da874062276b1a156d160fb8bd9b9475f2774a74a03d4a144014dfb0a33	ELSA-2024-0857	ol7_aarch64_optional_beta
	python-pillow-sane-2.0.0-21.gitd1c6db8.el7.aarch64.rpm	335b5da874062276b1a156d160fb8bd9b9475f2774a74a03d4a144014dfb0a33	ELSA-2024-0857	ol7_aarch64_optional_latest
	python-pillow-tk-2.0.0-21.gitd1c6db8.el7.aarch64.rpm	66837ca6c4fd09bf60dfa789e13a70372653cd163960f2d6866d681e2c0a816e	ELSA-2024-0857	ol7_aarch64_optional_beta
	python-pillow-tk-2.0.0-21.gitd1c6db8.el7.aarch64.rpm	66837ca6c4fd09bf60dfa789e13a70372653cd163960f2d6866d681e2c0a816e	ELSA-2024-0857	ol7_aarch64_optional_latest

Oracle Linux 7 (x86_64)	python-pillow-2.0.0-21.gitd1c6db8.el7.src.rpm	361d96a7c98cae9fd42bb9fd50bcc827ca152fcecf9f1364bc3130c370a7eaad	ELSA-2024-0857	ol7_x86_64_beta
	python-pillow-2.0.0-21.gitd1c6db8.el7.src.rpm	361d96a7c98cae9fd42bb9fd50bcc827ca152fcecf9f1364bc3130c370a7eaad	ELSA-2024-0857	ol7_x86_64_latest
	python-pillow-2.0.0-21.gitd1c6db8.el7.src.rpm	361d96a7c98cae9fd42bb9fd50bcc827ca152fcecf9f1364bc3130c370a7eaad	ELSA-2024-0857	ol7_x86_64_optional_latest
	python-pillow-2.0.0-21.gitd1c6db8.el7.src.rpm	361d96a7c98cae9fd42bb9fd50bcc827ca152fcecf9f1364bc3130c370a7eaad	ELSA-2024-0857	ol7_x86_64_u9_base
	python-pillow-2.0.0-21.gitd1c6db8.el7.i686.rpm	26c064426dbe114a19dcabeff6f2bb81cd00353bdf2119c27327a89e92115650	ELSA-2024-0857	ol7_x86_64_optional_beta
	python-pillow-2.0.0-21.gitd1c6db8.el7.i686.rpm	26c064426dbe114a19dcabeff6f2bb81cd00353bdf2119c27327a89e92115650	ELSA-2024-0857	ol7_x86_64_optional_latest
	python-pillow-2.0.0-21.gitd1c6db8.el7.x86_64.rpm	5c177828e5b8cc55a4eae26acdb2e0553cced4247aa8ca399bada2936ae23aba	ELSA-2024-0857	ol7_x86_64_beta
	python-pillow-2.0.0-21.gitd1c6db8.el7.x86_64.rpm	5c177828e5b8cc55a4eae26acdb2e0553cced4247aa8ca399bada2936ae23aba	ELSA-2024-0857	ol7_x86_64_latest
	python-pillow-2.0.0-21.gitd1c6db8.el7.x86_64.rpm	5c177828e5b8cc55a4eae26acdb2e0553cced4247aa8ca399bada2936ae23aba	ELSA-2024-0857	ol7_x86_64_u9_base
	python-pillow-devel-2.0.0-21.gitd1c6db8.el7.i686.rpm	17f6fee3730f5a4018220879bb45dce29f5496f1e35bca890ecb5518d7ee175c	ELSA-2024-0857	ol7_x86_64_optional_beta
	python-pillow-devel-2.0.0-21.gitd1c6db8.el7.i686.rpm	17f6fee3730f5a4018220879bb45dce29f5496f1e35bca890ecb5518d7ee175c	ELSA-2024-0857	ol7_x86_64_optional_latest
	python-pillow-devel-2.0.0-21.gitd1c6db8.el7.x86_64.rpm	60155323f435f17054c09984d687b2e8b9b8ecfe5f137b0c7f30b25304086423	ELSA-2024-0857	ol7_x86_64_optional_beta
	python-pillow-devel-2.0.0-21.gitd1c6db8.el7.x86_64.rpm	60155323f435f17054c09984d687b2e8b9b8ecfe5f137b0c7f30b25304086423	ELSA-2024-0857	ol7_x86_64_optional_latest
	python-pillow-doc-2.0.0-21.gitd1c6db8.el7.x86_64.rpm	2ba888e7b028afe7a4d8287b057f5b4fb1ecb7d35aba02ccbe649d1b8dd2285f	ELSA-2024-0857	ol7_x86_64_optional_beta
	python-pillow-doc-2.0.0-21.gitd1c6db8.el7.x86_64.rpm	2ba888e7b028afe7a4d8287b057f5b4fb1ecb7d35aba02ccbe649d1b8dd2285f	ELSA-2024-0857	ol7_x86_64_optional_latest
	python-pillow-qt-2.0.0-21.gitd1c6db8.el7.x86_64.rpm	87214decf9216e717adb08530a3650db16eb035451fa4207c971c880e3d2644a	ELSA-2024-0857	ol7_x86_64_optional_beta
	python-pillow-qt-2.0.0-21.gitd1c6db8.el7.x86_64.rpm	87214decf9216e717adb08530a3650db16eb035451fa4207c971c880e3d2644a	ELSA-2024-0857	ol7_x86_64_optional_latest
	python-pillow-sane-2.0.0-21.gitd1c6db8.el7.x86_64.rpm	5ecf2982a4b10c125f321f402bf2c9f4ec28bf8b4b545149e7b36db643d3fcaa	ELSA-2024-0857	ol7_x86_64_optional_beta
	python-pillow-sane-2.0.0-21.gitd1c6db8.el7.x86_64.rpm	5ecf2982a4b10c125f321f402bf2c9f4ec28bf8b4b545149e7b36db643d3fcaa	ELSA-2024-0857	ol7_x86_64_optional_latest
	python-pillow-tk-2.0.0-21.gitd1c6db8.el7.x86_64.rpm	e11a078967ddd9b68a21372f048332839be62922f0a06adb03f90a8d82f25908	ELSA-2024-0857	ol7_x86_64_optional_beta
	python-pillow-tk-2.0.0-21.gitd1c6db8.el7.x86_64.rpm	e11a078967ddd9b68a21372f048332839be62922f0a06adb03f90a8d82f25908	ELSA-2024-0857	ol7_x86_64_optional_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691