Lucene search
K

18 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2020-10177

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c. CVE-2020-10177 Note that Nessus relies on the presence of the package as reporte...

5.5CVSS6.7AI score0.01468EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/10/03 12:0 a.m.27 views

Amazon Linux 2 : python-pillow (ALAS-2024-2648)

The version of python-pillow installed on the remote host is prior to 2.0.0-23.gitd1c6db8. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2648 advisory. Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c. CVE-2020-10177 Tenable has...

5.5CVSS7AI score0.01468EPSS
Exploits0References4
Amazon
Amazon
added 2024/10/02 12:0 a.m.21 views

Medium: python-pillow

Issue Overview: Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c. CVE-2020-10177 Affected Packages: python-pillow Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras...

5.5CVSS6.7AI score0.01468EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-4697-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7AI score0.01498EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/05/03 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-1840)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.02372EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/04/13 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-1729)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.5AI score0.04212EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/03/05 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-1570)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7AI score0.01975EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2021/01/20 1:43 p.m.115 views

USN-4697-2: Pillow vulnerabilities

USN-4697-1 fixed several vulnerabilities in Pillow. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: It was discovered that Pillow incorrectly handled certain PCX image files. If a user or automated system were tricked into opening a specially-crafted...

7.1CVSS7.1AI score0.01498EPSS
Exploits0
OSV
OSV
added 2021/01/20 1:43 p.m.6 views

USN-4697-2 pillow vulnerabilities

USN-4697-1 fixed several vulnerabilities in Pillow. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: It was discovered that Pillow incorrectly handled certain PCX image files. If a user or automated system were tricked into opening a specially-crafted...

7.1CVSS6.8AI score0.01498EPSS
Exploits0References3
Mageia
Mageia
added 2020/11/23 7:51 p.m.45 views

Updated python-pillow packages fix security vulnerabilities

Pillow before 6.2.3 and 7.x before 7.0.1 has multiple out-of-bounds reads in libImaging/FliDecode.c CVE-2020-10177. In libImaging/PcxDecode.c in Pillow before 6.2.3 and 7.x before 7.0.1, an out-of-bounds read can occur when reading PCX files where state-shuffle is instructed to read beyond...

8.1CVSS2.4AI score0.02514EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/10/30 12:0 a.m.31 views

EulerOS 2.0 SP5 : python-pillow (EulerOS-SA-2020-2266)

According to the versions of the python-pillow package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c.CVE-2020-10177 - In libImaging/PcxDecode.c in Pillow before...

5.5CVSS6.9AI score0.01468EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2020/09/08 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2020-1966)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.7AI score0.01468EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/17 11:6 p.m.29 views

Security Bulletin: WML CE: Pillow before 7.1.0 has multiple out-of-bounds reads

Summary Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c. PyTorch and TensorFlow use Pillow. Vulnerability Details CVEID: CVE-2020-10177 DESCRIPTION: Pillow could allow a remote attacker to obtain sensitive information, caused by multiple out-of-bounds reads in...

5.5CVSS1.1AI score0.01468EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2020/07/12 12:0 a.m.28 views

Fedora: Security Advisory for python-pillow (FEDORA-2020-d0737711b6)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS6.9AI score0.02514EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/07/10 12:0 a.m.37 views

Fedora 31 : python-pillow (2020-d0737711b6)

This update fixes CVE-2020-10177, CVE-2020-10994, CVE-2020-10379, CVE-2020-11538 and CVE-2020-10378. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much ...

8.1CVSS6.8AI score0.02514EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2020/07/06 12:0 a.m.43 views

Fedora 32 : python-pillow (2020-c52106e48a)

This update fixes CVE-2020-10177, CVE-2020-10994, CVE-2020-10379, CVE-2020-11538 and CVE-2020-10378. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much ...

8.1CVSS6.8AI score0.02514EPSS
Exploits0References6
NVD
NVD
added 2020/06/25 7:15 p.m.14 views

CVE-2020-10177

Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c...

5.5CVSS0.01468EPSS
Exploits0References9
CVE
CVE
added 2020/06/25 6:33 p.m.239 views

CVE-2020-10177

CVE-2020-10177 affects Pillow prior to 7.1.0, with multiple out-of-bounds reads in libImaging/FliDecode.c. Technical details across connected advisories confirm affected package is python-pillow and fixes are provided in Pillow 7.1.0+ (e.g., ALAS-2024-2648, ALAS2 advisories; Mageia notes referenc...

5.5CVSS6.3AI score0.01468EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder