mirror of
https://github.com/python-pillow/Pillow.git
synced 2024-09-21 11:28:58 +03:00
c69dcc1c29
- Include CVE link in title (via @hugovk) - Retro-add release notes for 2.3.2, 2.5.2 for CVE-2014-3589
13 lines
285 B
ReStructuredText
13 lines
285 B
ReStructuredText
2.5.2
|
|
-----
|
|
|
|
Security
|
|
========
|
|
|
|
:cve:`2014-3589`: Fix DOS attack
|
|
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|
|
|
|
``PIL/IcnsImagePlugin.py`` in Python Imaging Library (PIL) and Pillow before 2.3.2 and
|
|
2.5.x before 2.5.2 allows remote attackers to cause a denial of service via a crafted
|
|
block size.
|