Lucene search
K

7 matches found

RedHat Linux
RedHat Linux
added 2021/11/09 5:42 p.m.2 views

python-pillow: Excessive memory allocation in ICNS image reader

A flaw was found in python-pillow. Attackers can cause a denial of service memory consumption because the reported size of a contained image is not properly checked for an ICNS container, and thus an attempted memory allocation can be very large...

7.5CVSS7.2AI score0.04851EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/11/09 5:42 p.m.3 views

python-pillow: Excessive memory allocation in ICO image reader

A flaw was found in python-pillow. Attackers can cause a denial of service memory consumption because the reported size of a contained image is not properly checked for an ICO container, and thus an attempted memory allocation can be very large...

7.5CVSS7.2AI score0.03071EPSS
Exploits0References4
OSV
OSV
added 2021/03/18 7:54 p.m.0 views

GHSA-95Q3-8GR9-GM8W Pillow Denial of Service by Uncontrolled Resource Consumption

Pillow before 8.1.2 allows attackers to cause a denial of service memory consumption because the reported size of a contained image is not properly checked for an ICO container, and thus an attempted memory allocation can be very large...

8.7CVSS5.9AI score0.03071EPSS
Exploits0References14
PyPA
PyPA
added 2021/03/03 9:15 a.m.4 views

PYSEC-2021-42

Pillow before 8.1.1 allows attackers to cause a denial of service memory consumption because the reported size of a contained image is not properly checked for an ICO container, and thus an attempted memory allocation can be very large...

7.5CVSS6.7AI score0.03071EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2021/03/03 9:15 a.m.0 views

UBUNTU-CVE-2021-27923

Pillow before 8.1.2 allows attackers to cause a denial of service memory consumption because the reported size of a contained image is not properly checked for an ICO container, and thus an attempted memory allocation can be very large...

7.5CVSS6.9AI score0.03071EPSS
Exploits0References4
OSV
OSV
added 2021/03/03 9:15 a.m.3 views

PYSEC-2021-42

Pillow before 8.1.1 allows attackers to cause a denial of service memory consumption because the reported size of a contained image is not properly checked for an ICO container, and thus an attempted memory allocation can be very large...

7.5CVSS6.9AI score0.03071EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2021/03/03 12:0 a.m.3 views

PT-2021-17672 · Pillow +9 · Pillow +9

Name of the Vulnerable Software and Affected Versions: Pillow versions prior to 8.1.1 Description: The issue allows attackers to cause a denial of service due to memory consumption. This occurs because the reported size of a contained image is not properly checked for an ICO container, leading to...

9.8CVSS7.2AI score0.5063EPSS
Exploits3References218
Rows per page
Query Builder