Lucene search
Alpine Linux Development TeamALPINE:CVE-2021-25289HistoryMar 19, 2021 - 4:15 a.m.
CVE-2021-25289
2021-03-1904:15:00
Alpine Linux Development Team
security.alpinelinux.org
23
0.002 Low
EPSS
Percentile
64.4%
An issue was discovered in Pillow before 8.1.1. TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpretation conflicts with LibTIFF in RGBA mode. NOTE: this issue exists because of an incomplete fix for CVE-2020-35654.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | edge-community | noarch | py3-pillow | <Â 8.1.2-r0 | UNKNOWN |
| Alpine | 3.14-main | noarch | py3-pillow | <Â 8.1.2-r0 | UNKNOWN |
| Alpine | 3.15-main | noarch | py3-pillow | <Â 8.1.2-r0 | UNKNOWN |
| Alpine | 3.16-community | noarch | py3-pillow | <Â 8.1.2-r0 | UNKNOWN |
| Alpine | 3.17-community | noarch | py3-pillow | <Â 8.1.2-r0 | UNKNOWN |
| Alpine | 3.18-community | noarch | py3-pillow | <Â 8.1.2-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | py3-pillow | <Â 8.1.2-r0 | UNKNOWN |
| Alpine | 3.20-community | noarch | py3-pillow | <Â 8.1.2-r0 | UNKNOWN |
Related
veracode
veracode
Denial Of Service (DoS)
2021-03-22 04:44:22
Denial Of Service (DoS)
2021-01-13 05:03:46
debiancve
debiancve
CVE-2021-25289
2021-03-19 04:15:00
CVE-2020-35654
2021-01-12 09:15:00
ubuntucve
ubuntucve
CVE-2021-25289
2021-03-03 00:00:00
CVE-2020-35654
2021-01-12 00:00:00
cvelist
cvelist
CVE-2021-25289
2021-03-19 03:29:48
CVE-2020-35654
2021-01-12 08:06:55
osv
osv
PYSEC-2021-35
2021-03-19 04:15:00
BIT-pillow-2021-25289
2024-03-06 11:05:02
Out of bounds write in Pillow
2021-03-29 16:35:16
github
github
Out of bounds write in Pillow
2021-03-29 16:35:16
Pillow Out-of-bounds Write
2021-03-18 19:55:27
cve
cve
CVE-2021-25289
2021-03-19 04:15:00
CVE-2020-35654
2021-01-12 09:15:00
redhatcve
redhatcve
CVE-2021-25289
2021-03-03 17:04:09
CVE-2020-35654
2021-01-12 16:20:23
prion
prion
Heap overflow
2021-03-19 04:15:00
Heap overflow
2021-01-12 09:15:00
f5
f5
K14102355 : Python Pillow vulnerability CVE-2021-25289
2021-06-03 00:00:00
cnvd
cnvd
Pillow Buffer Overflow Vulnerability (CNVD-2021-54035)
2021-03-15 00:00:00
alpinelinux
alpinelinux
CVE-2020-35654
2021-01-12 09:15:00
openvas
openvas
Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-2540)
2021-09-28 00:00:00
Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-2564)
2021-09-28 00:00:00
Fedora: Security Advisory for mingw-python-pillow (FEDORA-2021-a8ddc1ce70)
2021-01-21 00:00:00
nessus
nessus
EulerOS 2.0 SP9 : python-pillow (EulerOS-SA-2021-2564)
2021-09-27 00:00:00
EulerOS 2.0 SP9 : python-pillow (EulerOS-SA-2021-2540)
2021-09-27 00:00:00
fedora
fedora
[SECURITY] Fedora 32 Update: python-pillow-7.0.0-5.fc32
2021-01-24 01:23:46
[SECURITY] Fedora 33 Update: python-pillow-7.2.0-3.fc33
2021-01-21 01:47:29
[SECURITY] Fedora 33 Update: mingw-python-pillow-7.2.0-3.fc33
2021-01-21 01:47:28
gentoo
gentoo
Pillow: Multiple vulnerabilities
2021-01-11 00:00:00
Pillow: Multiple vulnerabilities
2021-07-14 00:00:00
ubuntu
ubuntu
Pillow vulnerabilities
2021-01-18 00:00:00
Pillow vulnerabilities
2021-03-11 00:00:00
archlinux
archlinux
[ASA-202101-11] python-pillow: multiple issues
2021-01-12 00:00:00
suse
suse
Security update for python-CairoSVG, python-Pillow (moderate)
2021-08-10 00:00:00
redhat
redhat
rosalinux
rosalinux
Advisory ROSA-SA-2021-1957
2021-07-02 18:03:40