2 matches found
python-pillow: out-of-bounds reads/writes in the parsing of SGI image files in expandrow/expandrow2
An out-of-bounds read/write flaw was found in python-pillow, in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable. This flaw allows an attacker to crash the application or potentially execute code on the system. The highest...
Oracle Linux 8 : python-pillow (ELSA-2020-3185)
The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-3185 advisory. - Fix for CVE-2020-5313 Resolves: rhbz1789532 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...