Lucene search
K

19 matches found

Debian
Debian
added 2026/02/01 3:25 a.m.20 views

[SECURITY] [DLA 4462-1] pillow security update

Debian LTS Advisory DLA-4462-1 [email protected] https://www.debian.org/lts/security/ Daniel Leidert February 01, 2026 https://wiki.debian.org/LTS Package : pillow Version : 8.1.2+dfsg-0.3+deb11u3 CVE ID : CVE-2021-23437 CVE-2022-24303 CVE-2022-45198 Multiple vulnerabilities have been...

9.1CVSS6.7AI score0.03154EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/02/01 12:0 a.m.5 views

Debian dla-4462 : python-pil-doc - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4462 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4462-1 [email protected]...

9.1CVSS5.6AI score0.03154EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2022-24303

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Pillow before 9.0.1 allows attackers to delete files because spaces in temporary pathnames are mishandled. CVE-2022-24303 Note that Nessus relies on the presenc...

9.1CVSS7.3AI score0.02811EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2025/01/15 12:0 a.m.5 views

python311-Pillow-11.1.0-1.1 on GA media (moderate)

python311-Pillow-11.1.0-1.1 on GA media Announcement ID: openSUSE-SU-2025:14645-1 Rating: moderate Cross-References: CVE-2022-22817 CVE-2022-24303 CVE-2022-30595 CVSS scores: CVE-2022-22817 SUSE : 4.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L CVE-2022-24303 SUSE : 5.9...

5.9CVSS7.1AI score0.03399EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2023/10/23 12:0 a.m.27 views

Ubuntu 20.04 ESM : Pillow vulnerabilities (USN-5777-2)

The remote Ubuntu 20.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5777-2 advisory. USN-5777-1 fixed vulnerabilities in Pillow Python 3. This update provides the corresponding updates for Pillow Python 2 in Ubuntu 20.04 LTS. Tenable has...

9.1CVSS7.6AI score0.02811EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-5777-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS8.5AI score0.02811EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/12/15 12:0 a.m.18 views

Ubuntu: Security Advisory (USN-5777-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS8.6AI score0.02811EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2022/12/13 10:6 a.m.44 views

USN-5777-1: Pillow vulnerabilities

It was discovered that Pillow incorrectly handled the deletion of temporary files when using a temporary directory that contains spaces. An attacker could possibly use this issue to delete arbitrary files. This issue only affected Ubuntu 20.04 LTS. CVE-2022-24303 It was discovered that Pillow...

9.1CVSS7.7AI score0.02811EPSS
Exploits0
OSV
OSV
added 2022/12/13 10:6 a.m.4 views

USN-5777-1 pillow vulnerabilities

It was discovered that Pillow incorrectly handled the deletion of temporary files when using a temporary directory that contains spaces. An attacker could possibly use this issue to delete arbitrary files. This issue only affected Ubuntu 20.04 LTS. CVE-2022-24303 It was discovered that Pillow...

9.1CVSS7AI score0.02811EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/07/14 12:0 a.m.28 views

EulerOS Virtualization 2.10.1 : python-pillow (EulerOS-SA-2022-2065)

According to the versions of the python-pillow package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - pathgetbbox in path.c in Pillow before 9.0.0 improperly initializes ImagePath.Path. CVE-2022-22815 - pathgetbbox in path.c ...

9.8CVSS7.2AI score0.03399EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2022/05/19 12:0 a.m.17 views

Mageia: Security Advisory (MGASA-2022-0166)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.03399EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2022/05/09 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2022-1665)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS9.3AI score0.02811EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/05/09 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2022-1651)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS9.3AI score0.02811EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/05/06 12:0 a.m.38 views

EulerOS 2.0 SP10 : python-pillow (EulerOS-SA-2022-1651)

According to the versions of the python-pillow package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Pillow before 9.0.1 allows attackers to delete files because spaces in temporary pathnames are mishandled. CVE-2022-24303 Note that Tenabl...

9.1CVSS7.5AI score0.02811EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/04/06 12:0 a.m.21 views

Fedora: Security Advisory for python-pillow (FEDORA-2022-64332f2a7c)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.1CVSS9.3AI score0.02811EPSS
Exploits0References2
OSV
OSV
added 2022/03/28 2:15 a.m.1 views

UBUNTU-CVE-2022-24303

Pillow before 9.0.1 allows attackers to delete files because spaces in temporary pathnames are mishandled...

9.1CVSS6.9AI score0.02811EPSS
Exploits0References5
CVE
CVE
added 2022/03/28 12:0 a.m.215 views

CVE-2022-24303

Pillow (Python Imaging Library fork) is affected by CVE-2022-24303. The vulnerability arises in Pillow’s handling of spaces in temporary pathnames, enabling an attacker to delete files through path traversal-like behavior. This impacts Pillow versions before 9.0.1. The documented consequence is f...

9.1CVSS8.9AI score0.02811EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2022/03/28 12:0 a.m.28 views

CVE-2022-24303

Pillow before 9.0.1 allows attackers to delete files because spaces in temporary pathnames are mishandled...

9.1CVSS9.2AI score0.02811EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2022/02/09 7:23 p.m.43 views

CVE-2022-24303

A flaw was found in python-pillow. The vulnerability occurs due to the not validated remove operation, leading to Improper input validation. This flaw allows an attacker to externally-influenced input commands that modify or remove the intended command...

9.1CVSS5.4AI score0.02811EPSS
Exploits0References4
Rows per page
Query Builder