Lucene search
GitHub Advisory DatabaseGHSA-CFMR-38G9-F2H7HistoryMay 14, 2022 - 2:05 a.m.
Pillow denial of service via Crafted Block Size
2022-05-1402:05:20
CWE-20
GitHub Advisory Database
github.com
9
0.017 Low
EPSS
Percentile
87.8%
PIL/IcnsImagePlugin.py in Python Imaging Library (PIL) and Pillow before 2.3.2 and 2.5.x before 2.5.2 allows remote attackers to cause a denial of service via a crafted block size.
References
lists.opensuse.org/opensuse-updates/2015-04/msg00056.html
www.debian.org/security/2014/dsa-3009
github.com/advisories/GHSA-cfmr-38g9-f2h7
github.com/python-pillow/Pillow/commit/205e056f8f9b06ed7b925cf8aa0874bc4aaf8a7d
github.com/python-pillow/Pillow/commit/5efeed77666bfd17708f3434b1d2daa9db1e1335
github.com/python-pillow/Pillow/commit/d47611e6fbb808ea109366781dd76559ffb80bcd
nvd.nist.gov/vuln/detail/CVE-2014-3589
pypi.python.org/pypi/Pillow/2.3.2
pypi.python.org/pypi/Pillow/2.5.2
Related
openvas
openvas
Debian Security Advisory DSA 3009-1 (python-imaging - security update)
2014-08-21 00:00:00
Debian: Security Advisory (DSA-3009-1)
2014-08-20 00:00:00
Debian: Security Advisory (DLA-41-1)
2023-03-08 00:00:00
osv
osv
Pillow denial of service via Crafted Block Size
2022-05-14 02:05:20
python-imaging - security update
2014-08-21 00:00:00
PYSEC-2014-10
2014-08-25 14:55:00
debian
debian
[SECURITY] [DSA 3009-1] python-imaging security update
2014-08-21 18:09:52
[DLA 41-1] python-imaging security update
2014-08-24 16:46:55
nessus
nessus
Debian DSA-3009-1 : python-imaging - security update
2014-08-23 00:00:00
Fedora 19 : python-pillow-2.0.0-14.gitd1c6db8.fc19 (2014-9536)
2014-08-27 00:00:00
Debian DLA-41-1 : python-imaging security update
2015-03-26 00:00:00
securityvulns
securityvulns
Python Imaging Library DoS
2014-08-26 00:00:00
[SECURITY] [DSA 3009-1] python-imaging security update
2014-08-26 00:00:00
[ MDVSA-2015:099 ] python-pillow
2015-04-19 00:00:00
debiancve
debiancve
CVE-2014-3589
2014-08-25 14:55:00
cve
cve
CVE-2014-3589
2014-08-25 14:55:00
prion
prion
Code injection
2014-08-25 14:55:00
ubuntucve
ubuntucve
CVE-2014-3589
2014-08-25 00:00:00
mageia
mageia
Updated python-imaging & python-pillow packages fix CVE-2014-3589
2014-08-21 13:36:13
cvelist
cvelist
CVE-2014-3589
2014-08-25 14:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: python-pillow-2.2.1-5.fc20
2014-08-27 01:32:03
[SECURITY] Fedora 19 Update: python-pillow-2.0.0-14.gitd1c6db8.fc19
2014-08-27 01:29:32
[SECURITY] Fedora 20 Update: python-pillow-2.2.1-7.fc20
2014-11-22 12:39:31
ubuntu
ubuntu
Python Imaging Library vulnerabilities
2016-09-15 00:00:00
Pillow vulnerabilities
2016-09-27 00:00:00
Pillow regresssion
2016-09-30 00:00:00