973786 – (CVE-2016-3076) VUL-0: CVE-2016-3076: python-Pillow: j2k integer overflow error on encode

Bug 973786 (CVE-2016-3076) - VUL-0: CVE-2016-3076: python-Pillow: j2k integer overflow error on encode

Summary: VUL-0: CVE-2016-3076: python-Pillow: j2k integer overflow error on encode

Status:	RESOLVED FIXED

Alias:	CVE-2016-3076

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P3 - Medium Severity: Major
Target Milestone:	---
Assignee:	Security Team bot
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/165570/
Whiteboard:	CVSSv2:SUSE:CVE-2016-3076:6.8:(AV:N/A...
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2016-04-04 08:28 UTC by Johannes Segitz
Modified:	2020-09-24 13:33 UTC (History)
CC List:	3 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Johannes Segitz 2016-04-04 08:28:47 UTC

CVE-2016-3076

Integer overflow in j2k_encode_entry

Fix: https://github.com/python-pillow/Pillow/commit/a1f244343df389cf15cdfff80327594821097295

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-3076
http://people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-3076.html

Comment 2 Swamp Workflow Management 2016-04-04 22:00:54 UTC

bugbot adjusting priority

Comment 3 Dirk Mueller 2018-03-09 10:01:43 UTC

It is fixed in 4.2.1+, so Cloud8+ is not affected. Still needs fixes for Cloud 6 and 7

Comment 4 Keith Berger 2018-03-23 14:22:51 UTC

https://trello.com/c/QPM3fpLk

Comment 5 Jan Zerebecki 2018-03-27 19:51:34 UTC

From https://bugzilla.suse.com/show_bug.cgi?id=1008846#c4 :
> For Ocata https://build.opensuse.org/request/show/591748 , though nobody
> should be using this.
> For Newton https://build.opensuse.org/request/show/591746 , waiting for this
> to copy it to Devel:Cloud:7 so it can become
> https://build.suse.de/package/show/SUSE:SLE-12-SP2:Update:Products:Cloud7:
> Update/python-Pillow .

Comment 8 Swamp Workflow Management 2018-05-09 01:07:34 UTC

SUSE-SU-2018:1174-1: An update that fixes two vulnerabilities is now available.

Category: security (moderate)
Bug References: 1008846,973786
CVE References: CVE-2016-3076,CVE-2016-9190
Sources used:
SUSE OpenStack Cloud 7 (src):    python-Pillow-2.8.1-4.3.2
SUSE Enterprise Storage 4 (src):    python-Pillow-2.8.1-4.3.2

Comment 9 Swamp Workflow Management 2018-05-09 19:17:08 UTC

SUSE-SU-2018:1191-1: An update that fixes two vulnerabilities is now available.

Category: security (moderate)
Bug References: 1008846,973786
CVE References: CVE-2016-3076,CVE-2016-9190
Sources used:
SUSE OpenStack Cloud 6 (src):    python-Pillow-2.7.0-4.3.1

Comment 11 Swamp Workflow Management 2019-05-23 16:09:54 UTC

SUSE-SU-2019:1321-1: An update that fixes three vulnerabilities is now available.

Category: security (important)
Bug References: 1008845,1008846,973786
CVE References: CVE-2016-3076,CVE-2016-9189,CVE-2016-9190
Sources used:
SUSE Enterprise Storage 5 (src):    python-Pillow-2.8.1-3.3.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.

Comment 12 Wolfgang Frisch 2020-09-24 13:33:40 UTC

Fixed in all supported code streams.