Amazon Linux 2023 : python3-pillow, python3-pillow-devel, python3-pillow-tk (ALAS2023-2026-1712)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1712 advisory. Pillow is a Python imaging library. Prior to version 12.2.0, if a font advances for each glyph by an exceeding large amount, when Pillow keeps track of the current position, it may lead to an...

Amazon Linux 2 : python-pillow, --advisory ALAS2-2026-3312 (ALAS-2026-3312)

The version of python-pillow installed on the remote host is prior to 2.0.0-23.gitd1c6db8. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3312 advisory. Pillow is a Python imaging library. Prior to version 12.2.0, if a font advances for each glyph by an...

OESA-2026-2428 python-pillow security update

Pillow is the friendly PIL fork by Alex Clark and Contributors. PIL is the Python Imaging \ Library by Fredrik Lundh and Contributors. As of 2019, Pillow development is supported by Tidelift. of CVE-2022-22815,CVE-2022-22816 Security Fixes: Pillow is a Python imaging library. From version 10.3.0 ...

CVE-2026-42311

creationtimestamp| type| source ---|---|--- 2026-05-09 09:01:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlfv2rwk4q2i 2026-05-09 09:11:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlfvmp5sui2h...

CVE-2026-42311

Pillow is a Python imaging library. From version 10.3.0 to before version 12.2.0, processing a malicious PSD file could lead to memory corruption, potentially resulting in a crash or arbitrary code execution. This issue has been patched in version 12.2.0...

CVE-2026-42311

Pillow is a Python imaging library. From version 10.3.0 to before version 12.2.0, processing a malicious PSD file could lead to memory corruption, potentially resulting in a crash or arbitrary code execution. This issue has been patched in version 12.2.0...

CVE-2026-42311 vulnerabilities

Vulnerabilities for packages: kubeflow-pipelines-visualization-server, superset...