CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

750 matches found

Tenable Nessus•added 2020/02/24 12:0 a.m.•31 views

EulerOS 2.0 SP5 : python-pillow (EulerOS-SA-2020-1128)

According to the versions of the python-pillow package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid image files, the library can either allocate very...

7.5CVSS6.7AI score0.03942EPSS

Exploits0References3

Tenable Nessus•added 2020/02/24 12:0 a.m.•38 views

Fedora 30 : python-pillow (2020-5cdbb19cca)

Backport patches for CVE-2020-5313, CVE-2020-5312, CVE-2020-5311, CVE-2020-5310, CVE-2019-19911 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...

9.8CVSS6.3AI score0.01753EPSS

Exploits0References6

Tenable Nessus•added 2020/02/24 12:0 a.m.•34 views

RHEL 8 : python-pillow (RHSA-2020:0566)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:0566 advisory. The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal...

9.8CVSS6.8AI score0.03942EPSS

Exploits0References8

OpenVAS•added 2020/02/22 12:0 a.m.•38 views

Fedora: Security Advisory for python-pillow (FEDORA-2020-5cdbb19cca)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.8AI score0.03942EPSS

Exploits0References2

RedHat Linux•added 2020/02/20 10:18 p.m.•3 views

python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service

A flaw was discovered in the way the python-pillow may allocate a large amount of memory or require a long time while processing specially crafted image files, possibly causing a denial of service. Applications that use the library to process untrusted files may be vulnerable to this flaw...

7.5CVSS7AI score0.03942EPSS

Exploits0References4

RedHat Linux•added 2020/02/20 10:18 p.m.•3 views

python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c

A flaw was discovered in python-pillow does where it does not properly restrict operations within the bounds of a memory buffer when decoding PCX images. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the...

9.8CVSS7.4AI score0.01753EPSS

Exploits0References4

RedHat Linux•added 2020/02/20 10:18 p.m.•85 views

Important: Red Hat Security Advisory: python-pillow security update

An update for python-pillow is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

9.8CVSS6.7AI score0.03942EPSS

Exploits0References4

RedHat Linux•added 2020/02/20 10:18 p.m.•3 views

python-pillow: out-of-bounds write in expandrow in libImaging/SgiRleDecode.c

An out-of-bounds write flaw was discovered in python-pillow in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system...

9.8CVSS7.2AI score0.01146EPSS

Exploits0References4

Mageia•added 2020/02/18 2:5 p.m.•43 views

Updated python-pillow packages fix security vulnerabilities

Updated python-pillow packages fix security vulnerabilities: It was discovered that Pillow incorrectly handled certain images. An attacker could possibly use this issue to cause a denial of service CVE-2019-16865, CVE-2019-19911. It was discovered that Pillow incorrectly handled certain TIFF...

9.8CVSS2.8AI score0.03942EPSS

Exploits0References2

OSV•added 2020/02/18 2:5 p.m.•8 views

MGASA-2020-0088 Updated python-pillow packages fix security vulnerabilities

9.8CVSS8.9AI score0.03942EPSS

Exploits0References3

OpenVAS•added 2020/01/31 12:0 a.m.•34 views

Fedora: Security Advisory for python-pillow (FEDORA-2020-df444e464e)

9.8CVSS8.8AI score0.01753EPSS

Exploits0References2

Tenable Nessus•added 2020/01/31 12:0 a.m.•40 views

Fedora 31 : python-pillow (2020-df444e464e)

Update to 6.2.2, fixes CVE-2020-5313, CVE-2020-5312, CVE-2020-5311, CVE-2020-5310. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible withou...

9.8CVSS6.3AI score0.01753EPSS

Exploits0References5

OpenVAS•added 2020/01/23 12:0 a.m.•33 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2019-1687)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.00566EPSS

Exploits0References2

OpenVAS•added 2020/01/23 12:0 a.m.•32 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2017-1049)

7.8CVSS7.8AI score0.00566EPSS

Exploits0References2

OpenVAS•added 2020/01/23 12:0 a.m.•31 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2020-1026)

7.5CVSS8.8AI score0.03942EPSS

Exploits0References2

OpenVAS•added 2020/01/23 12:0 a.m.•25 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2019-2701)