Lucene search

CVE-2020-35654

🗓️ 12 Jan 2021 09:13:15Reported by [email protected]Type

Pillow 8.1.0 TiffDecode heap-based buffer overflow CVE-2020-3565

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 70
Prion	Heap overflow	12 Jan 202109:15	–	prion
Prion	Heap overflow	19 Mar 202104:15	–	prion
OSV	BIT-PILLOW-2020-35654	6 Mar 202411:06	–	osv
OSV	PYSEC-2021-70	12 Jan 202109:15	–	osv
OSV	GHSA-VQCJ-WRF2-7V73 Pillow Out-of-bounds Write	18 Mar 202119:55	–	osv
OSV	CVE-2020-35654	12 Jan 202109:15	–	osv
OSV	PYSEC-2021-35	19 Mar 202104:15	–	osv
OSV	CVE-2021-25289	19 Mar 202104:15	–	osv
OSV	GHSA-57H3-9RGR-C24M Out of bounds write in Pillow	29 Mar 202116:35	–	osv
OSV	BIT-PILLOW-2021-25289	6 Mar 202411:05	–	osv

Nvd

Node

python pillowRange<8.1.0

Node

fedoraproject fedoraMatch32

fedoraproject fedoraMatch33

Source	Link
pillow	www.pillow.readthedocs.io/en/stable/releasenotes/index.html
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BF553AMNNNBW7SH4IM4MNE4M6GNZQ7YD/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TQQY6472RX4J2SUJENWDZAWKTJJGP2ML/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6BYVI5G44MRIPERKYDQEL3S3YQCZTVHE/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZTSY25UJU7NJUFHH3HWT575LT4TDFWBZ/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

12 Jan 2021 09:15Current

9.3High risk

Vulners AI Score9.3

CVSS26.8

CVSS38.8

EPSS0.00304

CWE-787

pillow tiffdecode heap-based buffer overflow ycbcr libtiff rgba mode crafted files