FreeBSD : py-pillow -- Integer overflow in Resample.c (0519db18-cf15-11e5-805c-5453ed2e2b49)

High Nessus Plugin ID 88665


The remote FreeBSD host is missing one or more security-related updates.


The Pillow maintainers report :

If a large value was passed into the new size for an image, it is possible to overflow an int32 value passed into malloc, leading the malloc'd buffer to be undersized. These allocations are followed by a loop that writes out of bounds. This can lead to corruption on the heap of the Python process with attacker controlled float data.

This issue was found by Ned Williamson.


Update the affected packages.

See Also

Plugin Details

Severity: High

ID: 88665

File Name: freebsd_pkg_0519db18cf1511e5805c5453ed2e2b49.nasl

Version: $Revision: 2.2 $

Type: local

Published: 2016/02/10

Modified: 2016/05/26

Dependencies: 12634

Risk Information

Risk Factor: High

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:py27-pillow, p-cpe:/a:freebsd:freebsd:py33-pillow, p-cpe:/a:freebsd:freebsd:py34-pillow, p-cpe:/a:freebsd:freebsd:py35-pillow, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 2016/02/09

Vulnerability Publication Date: 2016/02/05