| Summary: | python-pillow new security issue CVE-2020-3565[3-5] | ||
|---|---|---|---|
| Product: | Mageia | Reporter: | Zombie Ryushu <zombie_ryushu> |
| Component: | Security | Assignee: | All Packagers <pkg-bugs> |
| Status: | RESOLVED OLD | QA Contact: | Sec team <security> |
| Severity: | major | ||
| Priority: | Normal | CC: | luigiwalser, mageia |
| Version: | 7 | ||
| Target Milestone: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| URL: | https://nvd.nist.gov/vuln/detail/CVE-2020-35655 | ||
| Whiteboard: | |||
| Source RPM: | python-pillow-8.0.1-1.mga8.src.rpm | CVE: | CVE-2020-35655 |
| Status comment: | Fixed upstream in 8.1.0 | ||
| Bug Depends on: | 29002 | ||
| Bug Blocks: | |||
|
Description
Zombie Ryushu
2021-01-17 11:38:37 CET
Zombie Ryushu
2021-01-17 11:38:55 CET
CVE:
(none) =>
CVE-2020-35655 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35655 https://ubuntu.com/security/CVE-2020-35655 https://bugzilla.redhat.com/show_bug.cgi?id=1915432 Whiteboard:
(none) =>
MGA7TOO Freeze push asked for cauldron CC:
(none) =>
mageia Checked not a duplicate. Various maintainers for this SRPM, so assigning it globally. Assignee:
bugsquad =>
pkg-bugs python-pillow-8.1.0-1.mga8 uploaded for Cauldron. Version:
Cauldron =>
7 Ubuntu has issued an advisory for this on January 18: https://ubuntu.com/security/notices/USN-4697-1 Summary:
python-pillow new security issue CVE-2020-35655 =>
python-pillow new security issue CVE-2020-3565[3-5] Fedora has issued an advisory for this today (January 21): https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/4VRCCSORJBMRUY5NGYWMCKVE5VO5JOO5/ CC:
(none) =>
luigiwalser
David Walser
2021-05-29 00:36:57 CEST
Depends on:
(none) =>
29002 https://blog.mageia.org/en/2021/06/08/mageia-7-will-reach-end-of-support-on-30th-of-june-the-king-is-dead-long-live-the-king/ Resolution:
(none) =>
OLD |