Lucene search
+L

18 matches found

nessus
nessus
added 2024/06/14 12:0 a.m.24 views

SUSE SLES15 Security Update : python-Pillow (SUSE-SU-2024:1673-2)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1673-2 advisory. - Fixed ImagePath.Path array handling bsc1194552, CVE-2022-22815, bsc1194551, CVE-2022-22816 - Use snprintf instead of sprintf bsc1188574,...

9.8CVSS7.2AI score0.04851EPSS
Exploits1References37
openvas
openvas
added 2024/05/24 12:0 a.m.27 views

openSUSE Security Advisory (SUSE-SU-2024:1673-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.7AI score0.04851EPSS
Exploits1References15
openvas
openvas
added 2023/01/31 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2023-1288)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.03399EPSS
Exploits1References2
nessus
nessus
added 2022/07/14 12:0 a.m.28 views

EulerOS Virtualization 2.10.1 : python-pillow (EulerOS-SA-2022-2065)

According to the versions of the python-pillow package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - pathgetbbox in path.c in Pillow before 9.0.0 improperly initializes ImagePath.Path. CVE-2022-22815 - pathgetbbox in path.c ...

9.8CVSS7.2AI score0.03399EPSS
Exploits0References5
openvas
openvas
added 2022/05/19 12:0 a.m.17 views

Mageia: Security Advisory (MGASA-2022-0166)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.03399EPSS
Exploits0References7
openvas
openvas
added 2022/05/09 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2022-1690)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.5AI score0.03399EPSS
Exploits0References2
amazon
amazon
added 2022/04/27 12:0 a.m.70 views

Important: python-pillow

Issue Overview: A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to a buffer over-read and improper initialization. This flaw allows an attacker to unauthorized memory access that causes memory access errors, incorrect results, or...

9.8CVSS7.2AI score0.03399EPSS
Exploits0
openvas
openvas
added 2022/04/25 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2022-1583)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.5AI score0.03399EPSS
Exploits0References2
openvas
openvas
added 2022/04/20 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2022-1436)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.5AI score0.03399EPSS
Exploits0References2
openvas
openvas
added 2022/04/20 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2022-1495)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.5AI score0.03399EPSS
Exploits0References2
openvas
openvas
added 2022/04/20 12:0 a.m.16 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2022-1457)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.5AI score0.03399EPSS
Exploits0References2
nessus
nessus
added 2022/02/24 12:0 a.m.43 views

RHEL 8 : python-pillow (RHSA-2022:0643)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0643 advisory. The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal...

9.8CVSS7.4AI score0.03399EPSS
Exploits0References7
oraclelinux
oraclelinux
added 2022/02/23 12:0 a.m.54 views

python-pillow security update

2.0.0-23gitd1c6db8 - Fixup for CVE-2022-22817 - Security fixes for CVE-2022-22815, CVE-2022-22816 Resolves: rhbz2042522 2.0.0-22gitd1c6db8 - Fix for CVE-2022-22817 Resolves: rhbz2042527...

9.8CVSS1.2AI score0.03399EPSS
Exploits0
oraclelinux
oraclelinux
added 2022/02/23 12:0 a.m.44 views

python-pillow security update

5.1.1-18 - Fixup for CVE-2022-22817 - Security fixes for CVE-2022-22815, CVE-2022-22816 Resolves: rhbz2042522 5.1.1-17 - Fix for CVE-2022-22817 Resolves: rhbz2042527...

9.8CVSS1.2AI score0.03399EPSS
Exploits0
openvas
openvas
added 2022/02/04 12:0 a.m.21 views

Fedora: Security Advisory for python-pillow (FEDORA-2022-a1bc7decc9)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.5AI score0.03399EPSS
Exploits0References2
debian
debian
added 2022/01/23 6:58 p.m.52 views

[SECURITY] [DLA 2893-1] pillow security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2893-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort January 23, 2022 https://wiki.debian.org/LTS -...

9.8CVSS9.7AI score0.03399EPSS
Exploits0
cve
cve
added 2022/01/07 12:0 a.m.293 views

CVE-2022-22815

Summary (supported by provided docs): CVE-2022-22815 concerns the Pillow Python imaging library. The issue is in path_getbbox() within path.c where ImagePath.Path is improperly initialized, enabling a buffer over-read/improper initialization that can cause memory access errors or crashes. Connect...

6.5CVSS7.7AI score0.02556EPSS
Exploits0References5Affected Software1
osv
osv
added 2022/01/07 12:0 a.m.26 views

CVE-2022-22815

pathgetbbox in path.c in Pillow before 9.0.0 improperly initializes ImagePath.Path...

6.5CVSS3.2AI score0.02556EPSS
Exploits0References7
Rows per page
Query Builder