Lucene search

GHSA-P43W-G3C5-G5MQ Out of bounds read in Pillow

🗓️ 29 Mar 2021 16:27:35Reported by GoogleType

osv🔗 osv.dev👁 35 Views

Out of bounds read in Pillow before 8.1.

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 72
CVE	CVE-2021-25293	19 Mar 202104:15	–	cve
UbuntuCve	CVE-2021-25293	3 Mar 202100:00	–	ubuntucve
CNVD	Pillow out-of-bounds read vulnerability (CNVD-2021-54037)	8 Mar 202100:00	–	cnvd
Prion	Out-of-bounds	19 Mar 202104:15	–	prion
Github Security Blog	Out of bounds read in Pillow	29 Mar 202116:35	–	github
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2021-25293	4 Mar 202500:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.9.0 : python-pillow (EulerOS-SA-2021-2775)	17 Nov 202100:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP8 : python-pillow (EulerOS-SA-2021-2481)	24 Sep 202100:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.9.1 : python-pillow (EulerOS-SA-2021-2731)	17 Nov 202100:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP9 : python-pillow (EulerOS-SA-2021-2564)	27 Sep 202100:00	–	nessus

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2021-25293
github	www.github.com/python-pillow/Pillow/commit/4853e522bddbec66022c0915b9a56255d0188bf9
github	www.github.com/python-pillow/Pillow/commit/f891baa604636cd2506a9360d170bc2cf4963cc5
github	www.github.com/advisories/GHSA-p43w-g3c5-g5mq
github	www.github.com/pypa/advisory-database/tree/main/vulns/pillow/PYSEC-2021-39.yaml
github	www.github.com/python-pillow/Pillow
pillow	www.pillow.readthedocs.io/en/stable/releasenotes/8.1.1.html
security	www.security.gentoo.org/glsa/202107-33

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

29 Mar 2021 16:35Current

7.3High risk

Vulners AI Score7.3

CVSS25

CVSS37.5

EPSS0.00335