[Git][security-tracker-team/security-tracker][master] 2 commits: Track older pillow issue as well under #948224

Sun Jan 5 16:51:04 GMT 2020


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ac7e3305 by Salvatore Bonaccorso at 2020-01-05T17:46:44+01:00
Track older pillow issue as well under #948224

- - - - -
145e165b by Salvatore Bonaccorso at 2020-01-05T17:48:22+01:00
Add upstream version fixing CVE-2019-19911/pillow

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4233,8 +4233,8 @@ CVE-2019-19912
 	RESERVED
 CVE-2019-19911 [Raise an error for an invalid number of bands in FPX image]
 	RESERVED
-	- pillow <unfixed>
-	NOTE: https://github.com/python-pillow/Pillow/commit/774e53bb132461d8d5ebefec1162e29ec0ebc63d
+	- pillow <unfixed> (bug #948224)
+	NOTE: https://github.com/python-pillow/Pillow/commit/774e53bb132461d8d5ebefec1162e29ec0ebc63d (6.2.2)
 CVE-2019-19910 (The MinervaNeue Skin in MediaWiki from 2019-11-05 to 2019-12-13 (1.35  ...)
 	NOT-FOR-US: Mediawiki skin
 CVE-2019-19909 (An issue was discovered in Public Knowledge Project (PKP) pkp-lib befo ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/52751baad25ec1f85bb8243c6bbc6fa253092eb0...145e165bd1194fde3f3b463ab4c6dc38e297bfe1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/52751baad25ec1f85bb8243c6bbc6fa253092eb0...145e165bd1194fde3f3b463ab4c6dc38e297bfe1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200105/b5370634/attachment.html>
