CVE-2014-1932

EUVD-2014-0041
The (1) load_djpeg function in JpegImagePlugin.py, (2) Ghostscript function in EpsImagePlugin.py, (3) load function in IptcImagePlugin.py, and (4) _copy function in Image.py in Python Image Library (PIL) 1.1.7 and earlier and Pillow before 2.3.1 do not properly create temporary files, which allow local users to overwrite arbitrary files and obtain sensitive information via a symlink attack on the temporary file.
Link Following
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.4 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 32%
Affected Products (NVD)
VendorProductVersion
pythonpillow
𝑥
≤ 2.3.0
pythonwarepython_imaging_library
𝑥
≤ 1.1.7
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
pillow
bookworm
9.4.0-1.1+deb12u1
fixed
bookworm (security)
9.4.0-1.1+deb12u1
fixed
bullseye
8.1.2+dfsg-0.3+deb11u2
fixed
bullseye (security)
8.1.2+dfsg-0.3+deb11u2
fixed
sid
10.4.0-1
fixed
squeeze
no-dsa
trixie
10.4.0-1
fixed
wheezy
no-dsa
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
pillow
lucid
dne
precise
dne
quantal
dne
saucy
dne
python-imaging
lucid
Fixed 1.1.7-1ubuntu0.2
released
precise
Fixed 1.1.7-4ubuntu0.12.04.1
released
quantal
Fixed 1.1.7-4ubuntu0.12.10.1
released
saucy
Fixed 1.1.7+2.0.0-1ubuntu1.1
released
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-updates/2014-05/msg00002.html
http://www.openwall.com/lists/oss-security/2014/02/11/1
http://www.securityfocus.com/bid/65511
http://www.ubuntu.com/usn/USN-2168-1
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=737059
https://github.com/python-imaging/Pillow/commit/4e9f367dfd3f04c8f5d23f7f759ec12782e10ee7
https://security.gentoo.org/glsa/201612-52
http://lists.opensuse.org/opensuse-updates/2014-05/msg00002.html
http://www.openwall.com/lists/oss-security/2014/02/11/1
http://www.securityfocus.com/bid/65511
http://www.ubuntu.com/usn/USN-2168-1
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=737059
https://github.com/python-imaging/Pillow/commit/4e9f367dfd3f04c8f5d23f7f759ec12782e10ee7
https://security.gentoo.org/glsa/201612-52