CVE-2014-3007
27.04.2014, 20:55
Python Image Library (PIL) 1.1.7 and earlier and Pillow 2.3 might allow remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors related to CVE-2014-1932, possibly JpegImagePlugin.py.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| python | pillow | 2.3.0 |
| pythonware | python_imaging_library | 𝑥 ≤ 1.1.7 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Amazon Linux Releases
Amazon Package | |||
|---|---|---|---|
| python-pillow |
| ||
| python-pillow-debuginfo |
| ||
| python-pillow-devel |
| ||
| python-pillow-doc |
| ||
| python-pillow-sane |
| ||
| python-pillow-tk |
|