CVE-2014-3598 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2014-3598 Interim 1 19 2025-11-05T05:06:46Z current 2021-05-30T13:21:15Z 2025-11-05T05:06:46Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2014-3598 The Jpeg2KImagePlugin plugin in Pillow before 2.5.3 allows remote attackers to cause a denial of service via a crafted image. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/sle-security-updates/2015-April/001361.html E-Mail link for SUSE-SU-2015:0777-1 https://lists.suse.com/pipermail/sle-security-updates/2015-June/001450.html E-Mail link for SUSE-SU-2015:1102-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Enterprise Storage 1.0 SUSE Linux Enterprise Module for Python 3 15 SP6 SUSE Linux Enterprise Module for Python 3 15 SP6 SUSE Linux Enterprise Module for Python 3 15 SP6 SUSE Linux Enterprise Server 16.0 SUSE Linux Enterprise Module for Python 3 15 SP6 SUSE OpenStack Cloud 5 SUSE OpenStack Cloud 6 openSUSE Leap 15.2 openSUSE Tumbleweed calamari-clients-1.2.2+git.1428648634.40dfe5b-3.1 ceph-0.80.9-5.1 ceph-common-0.80.9-5.1 ceph-deploy-1.5.19+git.1431355031.6178cf3-9.1 ceph-fuse-0.80.9-5.1 ceph-radosgw-0.80.9-5.1 ceph-test-0.80.9-5.1 libcephfs1-0.80.9-5.1 librados2-0.80.9-5.1 librbd1-0.80.9-5.1 python-Pillow-2.7.0-0.7.1 python-Pillow-2.7.0-1.4 python-Pillow-2.7.0-4.1 python-Pillow-3.1.1-4.1 python-Pillow-tk-3.1.1-4.1 python-ceph-0.80.9-5.1 python-djangorestframework-2.3.12-4.2 python2-Pillow-5.0.0-lp152.4.1 python3-Pillow-3.4.2-1.1 python3-Pillow-5.0.0-lp152.4.1 python3-Pillow-tk-3.4.2-1.1 python310-Pillow-10.3.0-1.1 python310-Pillow-tk-10.3.0-1.1 python311-Pillow-10.3.0-1.1 python311-Pillow-9.5.0-150400.5.15.1 python311-Pillow-tk-10.3.0-1.1 python311-Pillow-tk-9.5.0-150400.5.15.1 python312-Pillow-10.3.0-1.1 python312-Pillow-tk-10.3.0-1.1 python313-Pillow-11.3.0-160000.2.2 python313-Pillow-tk-11.3.0-160000.2.2 python36-Pillow-8.3.2-1.2 python36-Pillow-tk-8.3.2-1.2 python38-Pillow-8.3.2-1.2 python38-Pillow-tk-8.3.2-1.2 python39-Pillow-8.3.2-1.2 python39-Pillow-tk-8.3.2-1.2 rbd-fuse-0.80.9-5.1 calamari-clients-1.2.2+git.1428648634.40dfe5b-3.1 as a component of SUSE Enterprise Storage 1.0 ceph-0.80.9-5.1 as a component of SUSE Enterprise Storage 1.0 ceph-common-0.80.9-5.1 as a component of SUSE Enterprise Storage 1.0 ceph-deploy-1.5.19+git.1431355031.6178cf3-9.1 as a component of SUSE Enterprise Storage 1.0 ceph-fuse-0.80.9-5.1 as a component of SUSE Enterprise Storage 1.0 ceph-radosgw-0.80.9-5.1 as a component of SUSE Enterprise Storage 1.0 ceph-test-0.80.9-5.1 as a component of SUSE Enterprise Storage 1.0 libcephfs1-0.80.9-5.1 as a component of SUSE Enterprise Storage 1.0 librados2-0.80.9-5.1 as a component of SUSE Enterprise Storage 1.0 librbd1-0.80.9-5.1 as a component of SUSE Enterprise Storage 1.0 python-Pillow-2.7.0-4.1 as a component of SUSE Enterprise Storage 1.0 python-ceph-0.80.9-5.1 as a component of SUSE Enterprise Storage 1.0 python-djangorestframework-2.3.12-4.2 as a component of SUSE Enterprise Storage 1.0 rbd-fuse-0.80.9-5.1 as a component of SUSE Enterprise Storage 1.0 python311-Pillow-9.5.0-150400.5.15.1 as a component of SUSE Linux Enterprise Module for Python 3 15 SP6 python311-Pillow-tk-9.5.0-150400.5.15.1 as a component of SUSE Linux Enterprise Module for Python 3 15 SP6 python313-Pillow-11.3.0-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 python313-Pillow-tk-11.3.0-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 python-Pillow-2.7.0-0.7.1 as a component of SUSE OpenStack Cloud 5 python-Pillow-2.7.0-1.4 as a component of SUSE OpenStack Cloud 6 python2-Pillow-5.0.0-lp152.4.1 as a component of openSUSE Leap 15.2 python3-Pillow-5.0.0-lp152.4.1 as a component of openSUSE Leap 15.2 python-Pillow-3.1.1-4.1 as a component of openSUSE Tumbleweed python-Pillow-tk-3.1.1-4.1 as a component of openSUSE Tumbleweed python3-Pillow-3.4.2-1.1 as a component of openSUSE Tumbleweed python3-Pillow-tk-3.4.2-1.1 as a component of openSUSE Tumbleweed python310-Pillow-10.3.0-1.1 as a component of openSUSE Tumbleweed python310-Pillow-tk-10.3.0-1.1 as a component of openSUSE Tumbleweed python311-Pillow-10.3.0-1.1 as a component of openSUSE Tumbleweed python311-Pillow-tk-10.3.0-1.1 as a component of openSUSE Tumbleweed python312-Pillow-10.3.0-1.1 as a component of openSUSE Tumbleweed python312-Pillow-tk-10.3.0-1.1 as a component of openSUSE Tumbleweed python36-Pillow-8.3.2-1.2 as a component of openSUSE Tumbleweed python36-Pillow-tk-8.3.2-1.2 as a component of openSUSE Tumbleweed python38-Pillow-8.3.2-1.2 as a component of openSUSE Tumbleweed python38-Pillow-tk-8.3.2-1.2 as a component of openSUSE Tumbleweed python39-Pillow-8.3.2-1.2 as a component of openSUSE Tumbleweed python39-Pillow-tk-8.3.2-1.2 as a component of openSUSE Tumbleweed The Jpeg2KImagePlugin plugin in Pillow before 2.5.3 allows remote attackers to cause a denial of service via a crafted image. CVE-2014-3598 SUSE Enterprise Storage 1.0:calamari-clients-1.2.2+git.1428648634.40dfe5b-3.1 SUSE Enterprise Storage 1.0:ceph-0.80.9-5.1 SUSE Enterprise Storage 1.0:ceph-common-0.80.9-5.1 SUSE Enterprise Storage 1.0:ceph-deploy-1.5.19+git.1431355031.6178cf3-9.1 SUSE Enterprise Storage 1.0:ceph-fuse-0.80.9-5.1 SUSE Enterprise Storage 1.0:ceph-radosgw-0.80.9-5.1 SUSE Enterprise Storage 1.0:ceph-test-0.80.9-5.1 SUSE Enterprise Storage 1.0:libcephfs1-0.80.9-5.1 SUSE Enterprise Storage 1.0:librados2-0.80.9-5.1 SUSE Enterprise Storage 1.0:librbd1-0.80.9-5.1 SUSE Enterprise Storage 1.0:python-Pillow-2.7.0-4.1 SUSE Enterprise Storage 1.0:python-ceph-0.80.9-5.1 SUSE Enterprise Storage 1.0:python-djangorestframework-2.3.12-4.2 SUSE Enterprise Storage 1.0:rbd-fuse-0.80.9-5.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python311-Pillow-9.5.0-150400.5.15.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python311-Pillow-tk-9.5.0-150400.5.15.1 SUSE Linux Enterprise Server 16.0:python313-Pillow-11.3.0-160000.2.2 SUSE Linux Enterprise Server 16.0:python313-Pillow-tk-11.3.0-160000.2.2 SUSE OpenStack Cloud 5:python-Pillow-2.7.0-0.7.1 SUSE OpenStack Cloud 6:python-Pillow-2.7.0-1.4 openSUSE Leap 15.2:python2-Pillow-5.0.0-lp152.4.1 openSUSE Leap 15.2:python3-Pillow-5.0.0-lp152.4.1 openSUSE Tumbleweed:python-Pillow-3.1.1-4.1 openSUSE Tumbleweed:python-Pillow-tk-3.1.1-4.1 openSUSE Tumbleweed:python3-Pillow-3.4.2-1.1 openSUSE Tumbleweed:python3-Pillow-tk-3.4.2-1.1 openSUSE Tumbleweed:python310-Pillow-10.3.0-1.1 openSUSE Tumbleweed:python310-Pillow-tk-10.3.0-1.1 openSUSE Tumbleweed:python311-Pillow-10.3.0-1.1 openSUSE Tumbleweed:python311-Pillow-tk-10.3.0-1.1 openSUSE Tumbleweed:python312-Pillow-10.3.0-1.1 openSUSE Tumbleweed:python312-Pillow-tk-10.3.0-1.1 openSUSE Tumbleweed:python36-Pillow-8.3.2-1.2 openSUSE Tumbleweed:python36-Pillow-tk-8.3.2-1.2 openSUSE Tumbleweed:python38-Pillow-8.3.2-1.2 openSUSE Tumbleweed:python38-Pillow-tk-8.3.2-1.2 openSUSE Tumbleweed:python39-Pillow-8.3.2-1.2 openSUSE Tumbleweed:python39-Pillow-tk-8.3.2-1.2 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P