Lucene search
K

35 matches found

Ubuntu
Ubuntu
added 2026/03/31 12:19 a.m.8 views

USN-8135-1: Pillow vulnerabilities

It was discovered that Pillow did not correctly handle reading J2K files, which could lead to an out-of-bounds read vulnerability. If a user or automated system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service. This issue...

9.1CVSS7.8AI score0.02876EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.16 views

Linux Distros Unpatched Vulnerability : CVE-2021-25290

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size. CVE-2021-25290 Note that Nessus relies ...

7.5CVSS6.8AI score0.02372EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/06/14 12:0 a.m.24 views

SUSE SLES15 Security Update : python-Pillow (SUSE-SU-2024:1673-2)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1673-2 advisory. - Fixed ImagePath.Path array handling bsc1194552, CVE-2022-22815, bsc1194551, CVE-2022-22816 - Use snprintf instead of sprintf bsc1188574,...

9.8CVSS7.2AI score0.04851EPSS
Exploits1References37
OpenVAS
OpenVAS
added 2024/05/24 12:0 a.m.26 views

openSUSE Security Advisory (SUSE-SU-2024:1673-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.7AI score0.04851EPSS
Exploits1References15
Tenable Nessus
Tenable Nessus
added 2023/06/13 12:0 a.m.58 views

Amazon Linux 2 : python-pillow (ALAS-2023-2087)

The version of python-pillow installed on the remote host is prior to 2.0.0-23.gitd1c6db8. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2087 advisory. An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invali...

7.5CVSS7.1AI score0.02372EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/03/23 12:0 a.m.20 views

Amazon Linux 2023 : python3-pillow, python3-pillow-devel, python3-pillow-tk (ALAS2023-2023-146)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-146 advisory. An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size. CVE-2021-25290 An issue was discovered in Pillow before 8.1.1. In...

9.8CVSS7.3AI score0.04851EPSS
Exploits0References24
Amazon
Amazon
added 2023/03/22 12:0 a.m.8 views

Important: python-pillow

Issue Overview: An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size. CVE-2021-25290 An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is an out-of-bounds read in TiffreadRGBATile via invalid tile boundaries...

9.8CVSS7.8AI score0.04851EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/01/31 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2023-1288)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.03399EPSS
Exploits1References2
OSV
OSV
added 2021/11/09 8:24 a.m.34 views

RLSA-2021:4149 Moderate: python-pillow security update

The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities. Security Fixes: python-pillow: Out-of-bounds read in J2K image reader CVE-2021-25287 python-pillow:...

9.1CVSS7.4AI score0.04851EPSS
Exploits0References16
AlmaLinux
AlmaLinux
added 2021/11/09 8:24 a.m.45 views

Moderate: python-pillow security update

The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities. Security Fixes: python-pillow: Out-of-bounds read in J2K image reader CVE-2021-25287 python-pillow:...

9.8CVSS7.5AI score0.04851EPSS
Exploits0References15
Rockylinux
Rockylinux
added 2021/11/09 8:24 a.m.45 views

python-pillow security update

An update is available for python-pillow. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The python-pillow packages contain a Python image processing library th...

9.8CVSS7.9AI score0.04851EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/07/23 12:0 a.m.30 views

Debian: Security Advisory (DLA-2716-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.6AI score0.03162EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/07/19 12:0 a.m.18 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-2227)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.7AI score0.02372EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/07/16 12:0 a.m.27 views

EulerOS 2.0 SP5 : python-pillow (EulerOS-SA-2021-2227)

According to the version of the python-pillow package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size.CVE-2021-25290 Note...

7.5CVSS7.1AI score0.02372EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/07/07 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-2123)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.02372EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/07/02 12:0 a.m.41 views

EulerOS Virtualization for ARM 64 3.0.2.0 : python-pillow (EulerOS-SA-2021-2123)

According to the versions of the python-pillow package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - A flaw was found in python-pillow. In TiffDecode.c, there is a negative-offset memcpy with an invalid size which...

7.5CVSS6.4AI score0.02372EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2021/07/01 12:0 a.m.40 views

EulerOS 2.0 SP9 : python-pillow (EulerOS-SA-2021-2064)

According to the version of the python-pillow packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size.CVE-2021-25290 Note...

7.5CVSS7.1AI score0.02372EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/07/01 12:0 a.m.31 views

EulerOS 2.0 SP9 : python-pillow (EulerOS-SA-2021-2053)

According to the version of the python-pillow packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size.CVE-2021-25290 Note...

7.5CVSS7.1AI score0.02372EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/07/01 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-2037)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.7AI score0.02372EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/06/30 12:0 a.m.37 views

EulerOS Virtualization for ARM 64 3.0.6.0 : python-pillow (EulerOS-SA-2021-2019)

According to the version of the python-pillow package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid...

7.5CVSS6.9AI score0.02372EPSS
Exploits0References2
Rows per page
Query Builder