Lucene search
K

17 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2021-25292

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Pillow before 8.1.1. The PDF parser allows a regular expression DoS ReDoS attack via a crafted PDF file because of a catastrophic...

6.5CVSS6.8AI score0.01635EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/06/14 12:0 a.m.24 views

SUSE SLES15 Security Update : python-Pillow (SUSE-SU-2024:1673-2)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1673-2 advisory. - Fixed ImagePath.Path array handling bsc1194552, CVE-2022-22815, bsc1194551, CVE-2022-22816 - Use snprintf instead of sprintf bsc1188574,...

9.8CVSS7.2AI score0.04851EPSS
Exploits1References37
OpenVAS
OpenVAS
added 2024/05/24 12:0 a.m.27 views

openSUSE Security Advisory (SUSE-SU-2024:1673-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.7AI score0.04851EPSS
Exploits1References15
OSV
OSV
added 2021/11/09 8:24 a.m.35 views

RLSA-2021:4149 Moderate: python-pillow security update

The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities. Security Fixes: python-pillow: Out-of-bounds read in J2K image reader CVE-2021-25287 python-pillow:...

9.1CVSS7.4AI score0.04851EPSS
Exploits0References16
Rockylinux
Rockylinux
added 2021/11/09 8:24 a.m.47 views

python-pillow security update

An update is available for python-pillow. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The python-pillow packages contain a Python image processing library th...

9.8CVSS7.9AI score0.04851EPSS
Exploits0
AlmaLinux
AlmaLinux
added 2021/11/09 8:24 a.m.50 views

Moderate: python-pillow security update

The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities. Security Fixes: python-pillow: Out-of-bounds read in J2K image reader CVE-2021-25287 python-pillow:...

9.8CVSS7.5AI score0.04851EPSS
Exploits0References15
OpenVAS
OpenVAS
added 2021/09/28 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-2564)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.03162EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/09/28 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-2540)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.03162EPSS
Exploits0References2
OSV
OSV
added 2021/03/19 4:15 a.m.34 views

CVE-2021-25292

An issue was discovered in Pillow before 8.1.1. The PDF parser allows a regular expression DoS ReDoS attack via a crafted PDF file because of a catastrophic backtracking regex...

6.5CVSS6.7AI score
Exploits0References2
Cvelist
Cvelist
added 2021/03/19 3:30 a.m.26 views

CVE-2021-25292

An issue was discovered in Pillow before 8.1.1. The PDF parser allows a regular expression DoS ReDoS attack via a crafted PDF file because of a catastrophic backtracking regex...

7.9AI score0.01635EPSS
Exploits0References2
CVE
CVE
added 2021/03/19 3:30 a.m.286 views

CVE-2021-25292

Pillow (Python Imaging Library fork) prior to 8.1.1 is affected by a vulnerability in its PDF format parser that allows a regular expression DoS (ReDoS) via a crafted PDF file due to a catastrophic backtracking regex. This can impact availability as indicated by the CVSS vector in the CVE entry, ...

6.5CVSS7.4AI score0.01635EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2021/03/15 12:0 a.m.21 views

Fedora: Security Advisory for mingw-python-pillow (FEDORA-2021-15845d3abe)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.7AI score0.04851EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/03/15 12:0 a.m.48 views

Fedora 32 : python-pillow / python2-pillow (2021-0ece308612)

The remote Fedora 32 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2021-0ece308612 advisory. - In Pillow before 8.1.0, TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpretation conflicts...

9.8CVSS7.4AI score0.04851EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2021/03/15 12:0 a.m.23 views

Fedora: Security Advisory for python-pillow (FEDORA-2021-15845d3abe)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.7AI score0.04851EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/03/12 12:0 a.m.33 views

Ubuntu: Security Advisory (USN-4763-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.04851EPSS
Exploits0References2
OSV
OSV
added 2021/03/11 2:56 p.m.3 views

USN-4763-1 pillow vulnerabilities

It was discovered that Pillow incorrectly handled certain Tiff image files. If a user or automated system were tricked into opening a specially-crafted Tiff file, a remote attacker could cause Pillow to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only...

9.8CVSS7.2AI score0.04851EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2021/03/03 5:39 p.m.39 views

CVE-2021-25292

A flaw was found in python-pillow. The PDF parser has a catastrophic backtracking regex that could be used as a DOS attack. Mitigation Disable the invoice generation feature to mitigate this vulnerability in Red Hat Quay...

7.5CVSS2.8AI score0.01635EPSS
Exploits0References3
Rows per page
Query Builder