FreeBSD : py-pillow -- Integer overflow in Resample.c (0519db18-cf15-11e5-805c-5453ed2e2b49)
High Nessus Plugin ID 88665
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionThe Pillow maintainers report :
If a large value was passed into the new size for an image, it is possible to overflow an int32 value passed into malloc, leading the malloc'd buffer to be undersized. These allocations are followed by a loop that writes out of bounds. This can lead to corruption on the heap of the Python process with attacker controlled float data.
This issue was found by Ned Williamson.
SolutionUpdate the affected packages.