Lucene search
MitreCVELIST:CVE-2021-27922HistoryMar 03, 2021 - 8:41 a.m.
CVE-2021-27922
2021-03-0308:41:50
mitre
www.cve.org
4
pillow 8.1.1
denial of service
memory consumption
icns container
memory allocation
Pillow before 8.1.1 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for an ICNS container, and thus an attempted memory allocation can be very large.
References
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S7G44Z33J4BNI2DPDROHWGVG2U7ZH5JU/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TQQY6472RX4J2SUJENWDZAWKTJJGP2ML/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZTSY25UJU7NJUFHH3HWT575LT4TDFWBZ/
pillow.readthedocs.io/en/stable/releasenotes/8.1.1.html
security.gentoo.org/glsa/202107-33
Related
osv
osv
Pillow Uncontrolled Resource Consumption
2021-03-18 19:55:21
BIT-pillow-2021-27922
2024-03-06 11:04:03
CVE-2021-27922
2021-03-03 09:15:14
cve
cve
CVE-2021-27922
2021-03-03 09:15:14
nvd
nvd
CVE-2021-27922
2021-03-03 09:15:14
redhatcve
redhatcve
CVE-2021-27922
2021-03-04 20:09:56
github
github
Pillow Uncontrolled Resource Consumption
2021-03-18 19:55:21
debiancve
debiancve
CVE-2021-27922
2021-03-03 09:15:14
veracode
veracode
Regular Expression Denial Of Service (DoS)
2021-03-08 02:01:12
alpinelinux
alpinelinux
CVE-2021-27922
2021-03-03 09:15:14
ubuntucve
ubuntucve
CVE-2021-27922
2021-03-03 00:00:00
prion
prion
Design/Logic Flaw
2021-03-03 09:15:00
openvas
openvas
Fedora: Security Advisory for python-pillow (FEDORA-2021-9016a9b7bd)
2021-03-20 00:00:00
Fedora: Security Advisory for mingw-python-pillow (FEDORA-2021-9016a9b7bd)
2021-03-20 00:00:00
Ubuntu: Security Advisory (USN-4763-1)
2021-03-12 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: mingw-python-pillow-8.1.2-1.fc34
2021-03-19 20:28:49
[SECURITY] Fedora 34 Update: python-pillow-8.1.2-1.fc34
2021-03-19 20:28:49
[SECURITY] Fedora 32 Update: python-pillow-7.0.0-7.fc32
2021-03-15 01:08:24
ubuntu
ubuntu
Pillow vulnerabilities
2021-03-11 00:00:00
nessus
nessus
EulerOS 2.0 SP8 : python-pillow (EulerOS-SA-2021-2314)
2021-08-10 00:00:00
Fedora 32 : python-pillow / python2-pillow (2021-0ece308612)
2021-03-15 00:00:00
suse
suse
Security update for python-CairoSVG, python-Pillow (moderate)
2021-08-10 00:00:00
gentoo
gentoo
Pillow: Multiple vulnerabilities
2021-07-14 00:00:00
rocky
rocky
python-pillow security update
2021-11-09 08:24:34
almalinux
almalinux
Moderate: python-pillow security update
2021-11-09 08:24:34
redhat
redhat
(RHSA-2021:4149) Moderate: python-pillow security update
2021-11-09 08:24:34
rosalinux
rosalinux
Advisory ROSA-SA-2021-1957
2021-07-02 18:03:40