CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

Tenable Nessus•added 2023/11/06 12:0 a.m.•23 views

Rocky Linux 8 : python-pillow (RLSA-2020:3185)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2020:3185 advisory. - In libImaging/SgiRleDecode.c in Pillow through 7.0.0, a number of out-of-bounds reads exist in the parsing of SGI image files, a different issue than...

9.8CVSS6.9AI score0.01146EPSS

Exploits0References5

SUSE CVE•added 2023/02/15 4:3 a.m.•1 views

SUSE CVE-2020-5313

libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow...

8.8CVSS7.2AI score0.00571EPSS

Exploits0References7

Tenable Nessus•added 2021/04/15 12:0 a.m.•32 views

EulerOS Virtualization 2.9.1 : python-pillow (EulerOS-SA-2021-1729)

According to the versions of the python-pillow package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow.CVE-2020-5313 - An out-of-bounds write flaw was...

9.8CVSS7.5AI score0.01753EPSS

Exploits0References13

Github Security Blog•added 2020/04/01 4:36 p.m.•98 views

Out-of-bounds Read in Pillow

libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow...

7.1CVSS8.3AI score0.00571EPSS

Exploits0References10Affected Software1

Tenable Nessus•added 2020/02/24 12:0 a.m.•31 views

EulerOS 2.0 SP5 : python-pillow (EulerOS-SA-2020-1128)

According to the versions of the python-pillow package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid image files, the library can either allocate very...

7.5CVSS6.7AI score0.03942EPSS

Exploits0References3

Veracode•added 2020/01/06 3:36 a.m.•33 views

Denial Of Service (DoS)

pillow is vulnerable to denial of service. An FLI buffer overflow in the function in ImagingFliDecode in libImaging/FliDecode.c results in an application crash. The buffer overflow can also potentially lead to execution of arbitrary code on the system...

7.1CVSS4.8AI score0.00571EPSS

Exploits0References8Affected Software2

NVD•added 2020/01/03 1:15 a.m.•18 views

CVE-2020-5313

libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow...

7.1CVSS8.2AI score0.00571EPSS

Exploits0References6

Prion•added 2020/01/03 1:15 a.m.•26 views

Buffer overflow

libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow...

5.8CVSS7.2AI score0.00571EPSS

Exploits0References6Affected Software4

CVE•added 2020/01/03 12:52 a.m.•347 views

CVE-2020-5313

Pillow (libImaging/FliDecode.c) has an FLI buffer overflow in versions before 6.2.2. Affected: Pillow/Python imaging library; root cause is an FLI decode buffer overflow. Impact is described as overflow in loading FLI images. Remediation: upgrade to Pillow 6.2.2 or later (per the CVE entry and ve...

7.1CVSS8.1AI score0.00571EPSS

Exploits0References6Affected Software1