NVD Vulnerability Detail

CVE-2016-2533

Summary	Buffer overflow in the ImagingPcdDecode function in PcdDecode.c in Pillow before 3.1.1 and Python Imaging Library (PIL) 1.1.7 and earlier allows remote attackers to cause a denial of service (crash) via a crafted PhotoCD file.
Publication Date	April 14, 2016, 1:59 a.m.
Registration Date	Jan. 26, 2021, 2:09 p.m.
Last Update	Nov. 21, 2024, 11:48 a.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:python_imaging_project:python_imaging::::::::		1.1.7
cpe:2.3:a:python:pillow::::::::		3.1.0

Related information, measures and tools

No	URL	タグ
1	http://www.debian.org/security/2016/dsa-3499
2	http://www.debian.org/security/2016/dsa-3499
3	http://www.openwall.com/lists/oss-security/2016/02/02/5
4	http://www.openwall.com/lists/oss-security/2016/02/02/5
5	http://www.openwall.com/lists/oss-security/2016/02/22/2
6	http://www.openwall.com/lists/oss-security/2016/02/22/2
7	http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html
8	http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html
9	https://github.com/python-pillow/Pillow/blob/c3cb690fed5d4bf0c45576759de55d054916c165/CHANGES.rst	Vendor Advisory
10	https://github.com/python-pillow/Pillow/blob/c3cb690fed5d4bf0c45576759de55d054916c165/CHANGES.rst	Vendor Advisory
11	https://github.com/python-pillow/Pillow/commit/5bdf54b5a76b54fb00bd05f2d733e0a4173eefc9#diff-8ff6909c159597e22288ad818938fd6b
12	https://github.com/python-pillow/Pillow/commit/5bdf54b5a76b54fb00bd05f2d733e0a4173eefc9#diff-8ff6909c159597e22288ad818938fd6b
13	https://github.com/python-pillow/Pillow/commit/ae453aa18b66af54e7ff716f4ccb33adca60afd4#diff-8ff6909c159597e22288ad818938fd6b
14	https://github.com/python-pillow/Pillow/commit/ae453aa18b66af54e7ff716f4ccb33adca60afd4#diff-8ff6909c159597e22288ad818938fd6b
15	https://github.com/python-pillow/Pillow/pull/1706
16	https://github.com/python-pillow/Pillow/pull/1706
17	https://security.gentoo.org/glsa/201612-52
18	https://security.gentoo.org/glsa/201612-52

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-119	バッファエラー	https://cwe.mitre.org/data/definitions/118.html

JVN Vulnerability Information

Pillow および Python Imaging Library の PcdDecode.c の ImagingPcdDecode 関数におけるバッファオーバーフローの脆弱性

Title	Pillow および Python Imaging Library の PcdDecode.c の ImagingPcdDecode 関数におけるバッファオーバーフローの脆弱性
Summary	Pillow および Python Imaging Library (PIL) の PcdDecode.c の ImagingPcdDecode 関数には、バッファオーバーフローの脆弱性が存在します。
Possible impacts	第三者により、巧妙に細工された PhotoCD ファイルを介して、サービス運用妨害 (クラッシュ) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Feb. 4, 2016, midnight
Registration Date	April 19, 2016, 4:22 p.m.
Last Update	Dec. 6, 2016, 5:01 p.m.

Affected System

Python Software Foundation

Python Pillow 3.1.1 未満

Debian

Debian GNU/Linux 7.0

Debian GNU/Linux 8.0

Python Imaging 1.1.7 およびそれ以前

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2016-2533	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2533
National Vulnerability Database (NVD)
2	CVE-2016-2533	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-2533

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-119	https://jvndb.jvn.jp/ja/cwe/CWE-119.html

ベンダー情報

No	Name	URL
Debian Security Advisory
1	DSA-3499	https://www.debian.org/security/2016/dsa-3499
GitHub
2	3.1.1 (2016-02-04)	https://github.com/python-pillow/Pillow/blob/c3cb690fed5d4bf0c45576759de55d054916c165/CHANGES.rst
3	PCD decoder overruns the shuffle buffer, Fixes #568 #1706	https://github.com/python-pillow/Pillow/pull/1706
4	PCD decoder overruns the shuffle buffer, Fixes #568 (5bdf54b)	https://github.com/python-pillow/Pillow/commit/5bdf54b5a76b54fb00bd05f2d733e0a4173eefc9#diff-8ff6909c159597e22288ad818938fd6b
5	PCD decoder overruns the shuffle buffer, Fixes #568 (ae453aa)	https://github.com/python-pillow/Pillow/commit/ae453aa18b66af54e7ff716f4ccb33adca60afd4#diff-8ff6909c159597e22288ad818938fd6b
Oracle Technology Network
6	Oracle Solaris Third Party Bulletin - January 2016	http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html

Change Log

No	Changed Details	Date of change
0	[2016年04月19日] 掲載 [2016年05月31日] CWE による脆弱性タイプ一覧：内容を更新 [2016年12月06日] ベンダ情報：オラクル (Oracle Solaris Third Party Bulletin - January 2016) を追加	Feb. 17, 2018, 10:37 a.m.