CVE-2014-3007
Python Image Library (PIL) 1.1.7 and earlier and Pillow 2.3 might allow remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors related to CVE-2014-1932, possibly JpegImagePlugin.py.
Date published : 2014-04-27
http://people.canonical.com/~ubuntu-security/cve/2014/CVE-2014-1932.html