Test ID:	1.3.6.1.4.1.25623.1.1.1.2.2016.422
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DLA-422-1)
Summary:	The remote host is missing an update for the Debian 'python-imaging' package(s) announced via the DLA-422-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'python-imaging' package(s) announced via the DLA-422-1 advisory. Vulnerability Insight: Two buffer overflows were discovered in python-imaging, a Python library for loading and manipulating image files, which may lead to the execution of arbitrary code. CVE-2016-0775 Buffer overflow in FliDecode.c The second buffer overflow was in PcdDecode.c. A CVE identifier has not been assigned yet. For Debian 6 Squeeze, these problems have been fixed in version 1.1.7-2+deb6u2. We recommend that you upgrade your python-imaging packages. Affected Software/OS: 'python-imaging' package(s) on Debian 6. Solution: Please install the updated package(s). CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2016-0775 DSA-3499 http://www.debian.org/security/2016/dsa-3499 GLSA-201612-52 https://security.gentoo.org/glsa/201612-52 https://github.com/python-pillow/Pillow/blob/c3cb690fed5d4bf0c45576759de55d054916c165/CHANGES.rst https://github.com/python-pillow/Pillow/commit/893a40850c2d5da41537958e40569c029a6e127b Common Vulnerability Exposure (CVE) ID: CVE-2016-2533 Debian Security Information: DSA-3499 (Google Search) http://www.openwall.com/lists/oss-security/2016/02/02/5 http://www.openwall.com/lists/oss-security/2016/02/22/2
Copyright	Copyright (C) 2023 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.