Updated python-imaging package fixes insecure use of temporary files
Publication date: 03 Apr 2014Modification date: 03 Apr 2014
Type: security
Affected Mageia releases : 3
CVE: CVE-2014-1932 , CVE-2014-1933
Description
Updated python-imaging packages fix security vulnerabilities:
Jakub Wilk discovered that temporary files were insecurely created (via
mktemp()) in the IptcImagePlugin.py, Image.py, JpegImagePlugin.py, and
EpsImagePlugin.py files of Python Imaging Library. A local attacker could use
this flaw to perform a symbolic link attack to modify an arbitrary file
accessible to the user running an application that uses the Python Imaging
Library (CVE-2014-1932).
Jakub Wilk discovered that temporary files created in the JpegImagePlugin.py
and EpsImagePlugin.py files of the Python Imaging Library were passed to an
external process. These could be viewed on the command line, allowing an
attacker to obtain the name and possibly perform symbolic link attacks,
allowing them to modify an arbitrary file accessible to the user running an
application that uses the Python Imaging Library (CVE-2014-1933).
References
- https://bugzilla.redhat.com/show_bug.cgi?id=1063658
- https://bugzilla.redhat.com/show_bug.cgi?id=1063660
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=737059
- https://bugs.mageia.org/show_bug.cgi?id=13075
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1932
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1933
SRPMS
3/core
- python-imaging-1.1.7-7.1.mga3