Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : python-pillow-5.1.1-16.el8 (AXSA:2021-2760:01)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2760:01 advisory. python-pillow: Out-of-bounds read in J2K image reader CVE-2021-25287 python-pillow: Out-of-bounds read in J2K image reader CVE-2021-25288...

9.8CVSS7.6AI score0.04851EPSS
Exploits0References16
SUSE CVE
SUSE CVE
added 2023/02/15 3:44 a.m.2 views

SUSE CVE-2021-27921

Pillow before 8.1.2 allows attackers to cause a denial of service memory consumption because the reported size of a contained image is not properly checked for a BLP container, and thus an attempted memory allocation can be very large...

7.5CVSS8.9AI score0.0317EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 3:44 a.m.5 views

SUSE CVE-2021-28678

An issue was discovered in Pillow before 8.2.0. For BLP data, BlpImagePlugin did not properly check that reads after jumping to file offsets returned data. This could lead to a DoS where the decoder could be run a large number of times on empty data...

7.5CVSS6.2AI score0.00732EPSS
Exploits0References5
OSV
OSV
added 2021/06/02 4:15 p.m.3 views

DEBIAN-CVE-2021-28678

An issue was discovered in Pillow before 8.2.0. For BLP data, BlpImagePlugin did not properly check that reads after jumping to file offsets returned data. This could lead to a DoS where the decoder could be run a large number of times on empty data...

5.5CVSS6.2AI score0.00732EPSS
Exploits0References1
PyPA
PyPA
added 2021/06/02 4:15 p.m.5 views

PYSEC-2021-94

An issue was discovered in Pillow before 8.2.0. For BLP data, BlpImagePlugin did not properly check that reads after jumping to file offsets returned data. This could lead to a DoS where the decoder could be run a large number of times on empty data...

5.5CVSS6.8AI score0.00732EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2021/05/10 12:0 a.m.3 views

UBUNTU-CVE-2021-28678

An issue was discovered in Pillow before 8.2.0. For BLP data, BlpImagePlugin did not properly check that reads after jumping to file offsets returned data. This could lead to a DoS where the decoder could be run a large number of times on empty data...

5.5CVSS6.2AI score0.00732EPSS
Exploits0References4
Rows per page
Query Builder