Lucene search
K

22 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:3 a.m.3 views

SUSE CVE-2020-5311

libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow...

8.8CVSS7.2AI score0.04212EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.33 views

Mageia: Security Advisory (MGASA-2020-0088)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.6AI score0.04212EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/04/13 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-1729)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.5AI score0.04212EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/08/28 12:0 a.m.41 views

EulerOS 2.0 SP8 : python-pillow (EulerOS-SA-2020-1877)

According to the versions of the python-pillow packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - There is a DoS vulnerability in Pillow before 6.2.2 caused by FpxImagePlugin.py calling the range function on an unvalidated 32-bit integ...

9.8CVSS6.7AI score0.04212EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/02/26 12:0 a.m.36 views

Oracle Linux 8 : python-pillow (ELSA-2020-0580)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-0580 advisory. - Fix for CVE-2020-5311 - out-of-bounds write in expandrow Resolves: rhbz1789535 Tenable has extracted the preceding description block directly from th...

9.8CVSS6.6AI score0.04212EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2020/02/25 12:0 a.m.94 views

python-pillow security update

5.1.1-10 - Bump and rebuild for gating to deliver CVE fixes Resolves: rhbz1789535 5.1.1-9 - Fix for CVE-2020-5311 - out-of-bounds write in expandrow Resolves: rhbz1789535 5.1.1-8 - Combined fixes for CVE-2020-5312 and CVE-2019-16865 Resolves: rhbz1789533 Resolves: rhbz1774066...

9.8CVSS2.1AI score0.04212EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2020/02/24 12:59 p.m.84 views

Important: Red Hat Security Advisory: python-pillow security update

An update for python-pillow is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS6.7AI score0.04212EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/02/24 12:0 a.m.39 views

Fedora 30 : python-pillow (2020-5cdbb19cca)

Backport patches for CVE-2020-5313, CVE-2020-5312, CVE-2020-5311, CVE-2020-5310, CVE-2019-19911 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...

9.8CVSS6.3AI score0.04212EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2020/02/24 12:0 a.m.36 views

RHEL 8 : python-pillow (RHSA-2020:0566)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:0566 advisory. The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal...

9.8CVSS6.8AI score0.04212EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2020/02/22 12:0 a.m.41 views

Fedora: Security Advisory for python-pillow (FEDORA-2020-5cdbb19cca)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.8AI score0.04212EPSS
Exploits0References2
Debian
Debian
added 2020/02/21 8:22 p.m.140 views

[SECURITY] [DSA 4631-1] pillow security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4631-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 21, 2020 https://www.debian.org/security/faq -...

9.8CVSS9.8AI score0.04212EPSS
Exploits0
Ubuntu
Ubuntu
added 2020/02/06 3:14 p.m.67 views

USN-4272-1: Pillow vulnerabilities

It was discovered that Pillow incorrectly handled certain images. An attacker could possibly use this issue to cause a denial of service. CVE-2019-16865, CVE-2019-19911 It was discovered that Pillow incorrectly handled certain images. An attacker could possibly use this issue to execute arbitrary...

9.8CVSS7.1AI score0.04212EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/01/31 12:0 a.m.42 views

Fedora 31 : python-pillow (2020-df444e464e)

Update to 6.2.2, fixes CVE-2020-5313, CVE-2020-5312, CVE-2020-5311, CVE-2020-5310. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible withou...

9.8CVSS6.3AI score0.04212EPSS
Exploits0References5
OSV
OSV
added 2020/01/03 1:15 a.m.31 views

CVE-2020-5311

libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow...

9.8CVSS9.5AI score
Exploits0References8
OSV
OSV
added 2020/01/03 1:15 a.m.2 views

ALPINE-CVE-2020-5311

libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow...

9.8CVSS7.4AI score0.04212EPSS
Exploits0References1
NVD
NVD
added 2020/01/03 1:15 a.m.18 views

CVE-2020-5311

libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow...

9.8CVSS8.9AI score0.04212EPSS
Exploits0References8
OSV
OSV
added 2020/01/03 1:15 a.m.4 views

UBUNTU-CVE-2020-5311

libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow...

9.8CVSS7.1AI score0.04212EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2020/01/03 1:15 a.m.35 views

CVE-2020-5311

libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow...

9.8CVSS6.8AI score0.04212EPSS
Exploits0References3
CVE
CVE
added 2020/01/03 12:52 a.m.341 views

CVE-2020-5311

Pillow’s vulnerability CVE-2020-5311 affects the libImaging/SgiRleDecode.c path and is triggered by an SGI buffer overflow in Pillow versions before 6.2.2. The issue is in the SGI image parsing code, not in a user-provided input path description; impact is partial to high depending on exposure of...

9.8CVSS8.8AI score0.04212EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2020/01/03 12:52 a.m.38 views

CVE-2020-5311

libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow...

8.9AI score0.04212EPSS
Exploits0References8
Rows per page
Query Builder