Lucene search
K

13 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux - уязвимость в pillow

In Pillow before 8.1.2, attackers can cause a denial of service due to excessive memory consumption. This occurs because the reported size of the contained image is not properly checked for a BLP container. As a result, a memory allocation attempt can be quite large...

7.5CVSS6.8AI score0.0317EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.12 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: python-pillow (UTSA-2026-017483)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017483 advisory. Pillow before 8.1.2 allows attackers to cause a denial of service memory consumption because the reported size of a contained image is not properly checked for an IC...

7.5CVSS5.8AI score0.04851EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-0179

Malware in sbrugna...

7.5CVSS7AI score0.03071EPSS
Exploits0References19
RedHat Linux
RedHat Linux
added 2021/11/09 5:42 p.m.1 views

python-pillow: Excessive memory allocation in BLP image reader

A flaw was found in python-pillow. Attackers can cause a denial of service memory consumption because the reported size of a contained image is not properly checked for a BLP container, and thus an attempted memory allocation can be very large...

7.5CVSS7.2AI score0.0317EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/11/09 5:42 p.m.3 views

python-pillow: Excessive memory allocation in ICO image reader

A flaw was found in python-pillow. Attackers can cause a denial of service memory consumption because the reported size of a contained image is not properly checked for an ICO container, and thus an attempted memory allocation can be very large...

7.5CVSS7.2AI score0.03071EPSS
Exploits0References4
Veracode
Veracode
added 2021/03/12 5:18 a.m.27 views

Denial Of Service (DoS)

pillow is vulnerable to a denial of service. The library does not properly check the reported size of a contained image for BLP container, allowing an malicious user to cause an application crash...

7.5CVSS2.5AI score0.0317EPSS
Exploits0References11Affected Software2
OSV
OSV
added 2021/03/03 9:15 a.m.1 views

DEBIAN-CVE-2021-27923

Pillow before 8.1.2 allows attackers to cause a denial of service memory consumption because the reported size of a contained image is not properly checked for an ICO container, and thus an attempted memory allocation can be very large...

7.5CVSS6.9AI score0.03071EPSS
Exploits0References1
OSV
OSV
added 2021/03/03 9:15 a.m.2 views

DEBIAN-CVE-2021-27922

Pillow before 8.1.2 allows attackers to cause a denial of service memory consumption because the reported size of a contained image is not properly checked for an ICNS container, and thus an attempted memory allocation can be very large...

7.5CVSS6.9AI score0.04851EPSS
Exploits0References1
OSV
OSV
added 2021/03/03 9:15 a.m.2 views

ALPINE-CVE-2021-27921

Pillow before 8.1.2 allows attackers to cause a denial of service memory consumption because the reported size of a contained image is not properly checked for a BLP container, and thus an attempted memory allocation can be very large...

7.5CVSS8.3AI score0.0317EPSS
Exploits0References1
OSV
OSV
added 2021/03/03 9:15 a.m.1 views

PYSEC-2021-42

Pillow before 8.1.1 allows attackers to cause a denial of service memory consumption because the reported size of a contained image is not properly checked for an ICO container, and thus an attempted memory allocation can be very large...

7.5CVSS6.9AI score0.03071EPSS
Exploits0References5
OSV
OSV
added 2021/03/03 9:15 a.m.3 views

PYSEC-2021-41

Pillow before 8.1.1 allows attackers to cause a denial of service memory consumption because the reported size of a contained image is not properly checked for an ICNS container, and thus an attempted memory allocation can be very large...

7.5CVSS6.9AI score0.04851EPSS
Exploits0References5
NVD
NVD
added 2017/08/18 6:29 p.m.18 views

CVE-2016-10389

In all Qualcomm products with Android releases from CAF using the Linux kernel, there is no size check for the images being flashed onto the NAND memory in their respective partitions, so there is a possibility of writing beyond the intended partition...

9.3CVSS7.3AI score0.00464EPSS
Exploits0References2
securityvulns
securityvulns
added 2005/09/21 12:0 a.m.30 views

phpBB 2.0.17 remote avatar size bug

Title: phpBB remote avatar size bug Software: phpBB 2.0.17 and maybe prior versions Discovered by: David Sopas Ferreira david at systemsecure dot org Original link: http://www.systemsecure.org/ssforum/viewtopic.php?t=272 » Email from phpBB « Your report "Avatar size" has been closed because your...

0.1AI score
Exploits0
Rows per page
Query Builder