18 matches found
Rocky Linux 8 : python-pillow (RLSA-2020:3185)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2020:3185 advisory. - In libImaging/SgiRleDecode.c in Pillow through 7.0.0, a number of out-of-bounds reads exist in the parsing of SGI image files, a different issue than...
CVE-2021-28676
A flaw was found in python-pillow. FliDecode.c did not properly check that the block advance was non-zero, potentially leading to an infinite loop on load. This issue dates to the PIL fork. The highest threat from this vulnerability is to system availability. Mitigation To mitigate this feature o...
NewStart CGSL CORE 5.04 / MAIN 5.04 : python-pillow Vulnerability (NS-SA-2021-0038)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has python-pillow packages installed that are affected by a vulnerability: - libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow. CVE-2020-5313 Note that Nessus has not tested for this issue but has instead...
EulerOS 2.0 SP5 : python-pillow (EulerOS-SA-2020-2266)
According to the versions of the python-pillow package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c.CVE-2020-10177 - In libImaging/PcxDecode.c in Pillow before...
EulerOS 2.0 SP3 : python-pillow (EulerOS-SA-2020-2080)
According to the versions of the python-pillow package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Integer overflow in the ImagingResampleHorizontal function in libImaging/Resample.c in Pillow before 3.1.1 allows remote attackers to have...
[SECURITY] [DLA 2317-1] pillow security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2317-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta August 08, 2020 https://wiki.debian.org/LTS -...
Out-of-bounds reads in Pillow
Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c...
GHSA-CQHG-XJHH-P8HF Out-of-bounds reads in Pillow
Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c...
Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2020-1707)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PYSEC-2020-76
Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c...
Out-of-bounds
Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c...
CVE-2020-10177
Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c...
Out-of-bounds Read in Pillow
libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow...
CVE-2020-5313
libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow...
Pillow Buffer overflow in ImagingFliDecode
Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service crash via a crafted FLI file...
CVE-2016-0775
Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service crash via a crafted FLI file...
CVE-2016-0775
Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service crash via a crafted FLI file...
CVE-2016-0775
Pillow (Python Imaging Library fork) contains a buffer overflow in ImagingFliDecode (libImaging/FliDecode.c) that affects versions before 3.1.1. A crafted FLI file can crash the process (DoS) or, per some sources, enable arbitrary code execution in affected contexts. The issue is documented acros...