CVE-2026-8814

CVE-2026-8814 affects the ExifReader library prior to version 4.39.0. The issue is an improper handling of highly compressed data (Data Amplification) that occurs when decompressing PNG zTXt metadata without a built-in maximum decompressed output size, which can cause a crafted PNG to materialize...

USN-3230-1: Pillow vulnerabilities

It was discovered that Pillow incorrectly handled certain compressed text chunks in PNG images. A remote attacker could possibly use this issue to cause Pillow to crash, resulting in a denial of service. This issue only affected Ubuntu 14.04 LTS. CVE-2014-9601 Cris Neckar discovered that Pillow...

[ MDVSA-2015:099 ] python-pillow

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:099 http://www.mandriva.com/en/support/security/ Package : python-pillow Date : March 28, 2015 Affected: Business Server 2.0 Problem Description: Updated python-imaging packages fix security vulnerabilities:...

Pillow denial of service vulnerability

Pillow is a compiled version of some bug fixes to PIL. Pillow has a security vulnerability. A remote attacker could exploit this vulnerability to cause a denial of service via a compressed block of text in a specially crafted PNG image...

CVE-2014-9601

Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is decompressed...

CVE-2014-9601

Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is decompressed...

UBUNTU-CVE-2014-9601

Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is decompressed...