DSA-5704-1

NameDSA-5704-1
Descriptionpillow - security update
SourceDebian
ReferencesCVE-2023-44271, CVE-2023-50447, CVE-2024-28219

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
pillow (PTS)bullseye8.1.2+dfsg-0.3+deb11u1vulnerable
bullseye (security)8.1.2+dfsg-0.3+deb11u2fixed
bookworm9.4.0-1.1vulnerable
bookworm (security)9.4.0-1.1+deb12u1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
pillowsourcebullseye8.1.2+dfsg-0.3+deb11u2
pillowsourcebookworm9.4.0-1.1+deb12u1
Search for package or bug name: Reporting problems