Security update for python-Pillow
python-pillow was updated to 2.7.0 to fix security issues and bugs.
The following vulnerabilities were fixed:
* CVE-2014-9601: Remote attackers could cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is decompressed.
* CVE-2014-3598: Remote attackers could cause a denial of service using specially crafted image files via Jpeg2KImagePlugin
* CVE-2014-3589: Remote attackers could cause a denial of service using specially crafted image files via IcnsImagePlugin
- Submitted by Thomas Bechtold (tbechtold)
Fixed bugs
bnc#921566
VUL-0: python-Pillow: multiple vulnerabilities