VYPR

rpm package

suse/python-djangorestframework&distro=SUSE Enterprise Storage 1.0

pkg:rpm/suse/python-djangorestframework&distro=SUSE%20Enterprise%20Storage%201.0

Vulnerabilities (3)

  • CVE-2015-3010Jun 16, 2015
    affected < 2.3.12-4.2fixed 2.3.12-4.2

    ceph-deploy before 1.5.23 uses weak permissions (644) for ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file.

  • CVE-2014-3598May 1, 2015
    affected < 2.3.12-4.2fixed 2.3.12-4.2

    The Jpeg2KImagePlugin plugin in Pillow before 2.5.3 allows remote attackers to cause a denial of service via a crafted image.

  • CVE-2014-3589Aug 25, 2014
    affected < 2.3.12-4.2fixed 2.3.12-4.2

    PIL/IcnsImagePlugin.py in Python Imaging Library (PIL) and Pillow before 2.3.2 and 2.5.x before 2.5.2 allows remote attackers to cause a denial of service via a crafted block size.