23 matches found
CVE-2020-35653
In Pillow before 8.1.0, PcxDecode has a buffer over-read when decoding a crafted PCX file because the user-supplied stride value is trusted for buffer calculations...
[ASA-202101-11] python-pillow: multiple issues
Arch Linux Security Advisory ASA-202101-11 ========================================== Severity: Medium Date : 2021-01-12 CVE-ID : CVE-2020-35653 CVE-2020-35654 CVE-2020-35655 Package : python-pillow Type : multiple issues Remote : No Link : https://security.archlinux.org/AVG-1438 Summary =======...
GLSA-202101-08 : Pillow: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202101-08 Pillow: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Pillow. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for details...