CVE-2014-3007 in Python Imaging Library
Résumé
par MITRE
Python Image Library (PIL) 1.1.7 and earlier and Pillow 2.3 might allow remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors related to CVE-2014-1932, possibly JpegImagePlugin.py.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.