CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
87.6%
It was discovered that the Python Imaging Library incorrectly handled
certain compressed text chunks in PNG images. A remote attacker could
possibly use this issue to cause the Python Imaging Library to crash,
resulting in a denial of service. (CVE-2014-9601)
Cris Neckar discovered that the Python Imaging Library incorrectly handled
certain malformed images. A remote attacker could use this issue to cause
the Python Imaging Library to crash, resulting in a denial of service, or
possibly obtain sensitive information. (CVE-2016-9189)
Cris Neckar discovered that the Python Imaging Library incorrectly handled
certain malformed images. A remote attacker could use this issue to cause
the Python Imaging Library to crash, resulting in a denial of service, or
possibly execute arbitrary code. (CVE-2016-9190)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 12.04 | noarch | python-imaging | < 1.1.7-4ubuntu0.12.04.3 | UNKNOWN |
Ubuntu | 12.04 | noarch | python-imaging-dbg | < 1.1.7-4ubuntu0.12.04.3 | UNKNOWN |
Ubuntu | 12.04 | noarch | python-imaging-dbgsym | < 1.1.7-4ubuntu0.12.04.3 | UNKNOWN |
Ubuntu | 12.04 | noarch | python-imaging-sane | < 1.1.7-4ubuntu0.12.04.3 | UNKNOWN |
Ubuntu | 12.04 | noarch | python-imaging-sane-dbg | < 1.1.7-4ubuntu0.12.04.3 | UNKNOWN |
Ubuntu | 12.04 | noarch | python-imaging-sane-dbgsym | < 1.1.7-4ubuntu0.12.04.3 | UNKNOWN |
Ubuntu | 12.04 | noarch | python-imaging-tk | < 1.1.7-4ubuntu0.12.04.3 | UNKNOWN |
Ubuntu | 12.04 | noarch | python-imaging-tk-dbg | < 1.1.7-4ubuntu0.12.04.3 | UNKNOWN |
Ubuntu | 12.04 | noarch | python-imaging-tk-dbgsym | < 1.1.7-4ubuntu0.12.04.3 | UNKNOWN |
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
87.6%