Accepting request 362918 from home:stroeder:branches:devel:languages:python

update to version 3.1.1 with security fixes OBS-URL: https://build.opensuse.org/request/show/362918 OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-Pillow?expand=0&rev=45
2016-03-01 13:05:57 +00:00 · 2016-03-01 13:05:57 +00:00 · b462ecac0c
commit b462ecac0c
parent 173ee749ef
4 changed files with 17 additions and 4 deletions
--- a/Pillow-3.1.0.tar.gz
+++ b/Pillow-3.1.0.tar.gz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:e15277f0c46347af1d5686c510c80c0a4c4fa4833493e73066f7bb8c1ed1b003
-size 9858361
--- a/Pillow-3.1.1.tar.gz
+++ b/Pillow-3.1.1.tar.gz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:486f4ccddee09429cb1c63ea56c02894aecf9d69acdcaf006c53835df2549fff
+size 10130206
--- a/python-Pillow.changes
+++ b/python-Pillow.changes
@ -1,3 +1,16 @@
+-------------------------------------------------------------------
+Mon Feb 29 12:28:34 UTC 2016 - michael@stroeder.com
+
+- update to version 3.1.1 with security fixes:
+  * Fixed an integer overflow in Resample.c causing writes in the Python heap. 
+  * Fixed a buffer overflow in PcdDecode.c causing a segfault when opening 
+    PhotoCD files. CVE-2016-TBD
+  * Fixed a buffer overflow in FliDecode.c causing a segfault when opening 
+    FLI files. CVE-2016-0775
+  * Fixed a buffer overflow in TiffDecode.c causing an arbitrary amount of 
+    memory to be overwritten when opening a specially crafted invalid TIFF 
+    file. CVE-2016-0740
+
 -------------------------------------------------------------------
 Mon Feb  1 11:13:20 UTC 2016 - toddrme2178@gmail.com

--- a/python-Pillow.spec
+++ b/python-Pillow.spec
@ -17,7 +17,7 @@


 Name:           python-Pillow
-Version:        3.1.0
+Version:        3.1.1
 Release:        0
 Summary:        Python Imaging Library (Fork)
 License:        HPND