ELSA-2020-3887
- ULN >
- Oracle Linux Errata repository >
- ELSA-2020-3887
ELSA-2020-3887 - python-pillow security update
| Type: | SECURITY |
| Severity: | MODERATE |
| Release Date: | 2020-10-06 |
Description
[2.0.0-21gitd1c6db8]
- Fix for CVE-2020-5313
Resolves: rhbz#1789532
[2.0.0-20gitd1c6db8]
- Combined fixes for CVE-2020-5312 and CVE-2019-16865
Resolves: rhbz#1789533
Resolves: rhbz#1774066
[2.0.0-19gitd1c6db8]
- Reenabled webp support on little endian archs.
[2.0.0-18gitd1c6db8]
- Disabled webp support on ppc64le due to #962091 and #1127230.
- Updated URL.
[2.0.0-17gitd1c6db8]
- Wiped out some memory leaks.
[2.0.0-15.gitd1c6db8]
- Mass rebuild 2014-01-24
[2.0.0-14gitd1c6db8]
- Fixed memory corruption.
- Resolves: rhbz#1001122
[2.0.0-13.gitd1c6db8]
- Mass rebuild 2013-12-27
[2.0.0-12]
- Mark doc subpackage arch dependent. Docs are built depending on supported
features, which are different across archs.
Resolves: rhbz#987839
[2.0.0-11]
- Drop lcms support
Resolves: rhbz#987839
[2.0.0-10]
- Build without webp support on s390* archs
Resolves: rhbz#962059
[2.0.0-9.gitd1c6db8]
- Conditionaly disable build of python3 parts on RHEL system
[2.0.0-8.gitd1c6db8]
- Add patch to fix test failure on big-endian
[2.0.0-7.gitd1c6db8]
- Remove Obsoletes in the python-pillow-qt subpackage. Obsoletes isnt
appropriate since qt support didnt exist in the previous python-pillow
package so theres no reason to drag in python-pillow-qt when updating
python-pillow.
[2.0.0-6.gitd1c6db8]
- Update to latest git
- python-pillow_quantization.patch now upstream
- python-pillow_endianness.patch now upstream
- Add subpackage for ImageQt module, with correct dependencies
- Add PyQt4 and numpy BR (for generating docs / running tests)
[2.0.0-5.git93a488e]
- Reenable tests on bigendian, add patches for #928927
[2.0.0-4.git93a488e]
- Update to latest git
- disable tests on bigendian (PPC*, S390*) until rhbz#928927 is fixed
[2.0.0-3.gitde210a2]
- python-pillow_tempfile.patch now upstream
- Add python3-imaging provides (bug #924867)
[2.0.0-2.git2e88848]
- Update to latest git
- Remove python-pillow-disable-test.patch, gcc is now fixed
- Add python-pillow_tempfile.patch to prevent a temporary file from getting packaged
[2.0.0-1.git2f4207c]
- Update to 2.0.0 git snapshot
- Enable python3 packages
- Add libwebp-devel BR for Pillow 2.0.0
[1.7.8-6.20130305git]
- Add ARM support
[1.7.8-5.20130305git]
- add s390* and ppc* to arch detection
[1.7.8-4.20130305git7866759]
- Update to latest git snapshot
- 0001-Cast-hash-table-values-to-unsigned-long.patch now upstream
- Pillow-1.7.8-selftest.patch now upstream
[1.7.8-3.20130210gite09ff61]
- Really remove -fno-strict-aliasing
- Place comment on how to retreive source just above the Source0 line
[1.7.8-2.20130210gite09ff61]
- Rebuild without -fno-strict-aliasing
- Add patch for upstream issue #52
[1.7.8-1.20130210gite09ff61]
- Initial RPM package
Related CVEs
| CVE-2020-5313 |
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
| Oracle Linux 7 (aarch64) | python-pillow-2.0.0-21.gitd1c6db8.el7.src.rpm | 2848d3db9957f00f9d3a335cedd0d83d | - |
| python-pillow-2.0.0-21.gitd1c6db8.el7.aarch64.rpm | c3c10bba89029bd6b8f4127fb8c012f8 | - | |
| python-pillow-devel-2.0.0-21.gitd1c6db8.el7.aarch64.rpm | 2ddbed7fa4b2bd5f10138947a82ed399 | - | |
| python-pillow-doc-2.0.0-21.gitd1c6db8.el7.aarch64.rpm | 7583f2112a8f206e756a85aa29ac9259 | - | |
| python-pillow-qt-2.0.0-21.gitd1c6db8.el7.aarch64.rpm | acec804a3264c7751b93d21915ef187f | - | |
| python-pillow-sane-2.0.0-21.gitd1c6db8.el7.aarch64.rpm | 51e4ee9cd8e2d8e94de430015f088d89 | - | |
| python-pillow-tk-2.0.0-21.gitd1c6db8.el7.aarch64.rpm | 359255be0588727d46da5cbf2e16b36e | - | |
| Oracle Linux 7 (x86_64) | python-pillow-2.0.0-21.gitd1c6db8.el7.src.rpm | 2848d3db9957f00f9d3a335cedd0d83d | - |
| python-pillow-2.0.0-21.gitd1c6db8.el7.i686.rpm | a60348b4f898258d4f9a4411b990426b | - | |
| python-pillow-2.0.0-21.gitd1c6db8.el7.x86_64.rpm | 704f3b40e805e97b145202547c2f300c | - | |
| python-pillow-devel-2.0.0-21.gitd1c6db8.el7.i686.rpm | b11988845bec333e319bf64c4ec4406f | - | |
| python-pillow-devel-2.0.0-21.gitd1c6db8.el7.x86_64.rpm | 46f14e86cc34b9115d7efc10091e17aa | - | |
| python-pillow-doc-2.0.0-21.gitd1c6db8.el7.x86_64.rpm | 80527bdf53ff306b3aa3495c079f0e93 | - | |
| python-pillow-qt-2.0.0-21.gitd1c6db8.el7.x86_64.rpm | f3311f2087f6f5c4d23ba3603423af99 | - | |
| python-pillow-sane-2.0.0-21.gitd1c6db8.el7.x86_64.rpm | f8b28a5b9aa734fa15074d6804c9e722 | - | |
| python-pillow-tk-2.0.0-21.gitd1c6db8.el7.x86_64.rpm | f32af5089c24bdebe83f96866ce1a32d | - | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
