Lucene search
K

29 matches found

Prion
Prion
added 2021/01/12 9:15 a.m.25 views

Buffer overflow

In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SGI RLE image files because offsets and length tables are mishandled...

5.8CVSS6.8AI score0.01573EPSS
Exploits0References3Affected Software2
UbuntuCve
UbuntuCve
added 2021/01/12 9:15 a.m.40 views

CVE-2020-35655

In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SGI RLE image files because offsets and length tables are mishandled...

5.8CVSS6.7AI score0.01573EPSS
Exploits0References3
OSV
OSV
added 2021/01/12 9:15 a.m.45 views

PYSEC-2021-71

In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SGI RLE image files because offsets and length tables are mishandled...

5.8CVSS2.2AI score0.01573EPSS
Exploits0References4
Cvelist
Cvelist
added 2021/01/12 8:8 a.m.20 views

CVE-2020-35655

In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SGI RLE image files because offsets and length tables are mishandled...

7.2AI score0.01573EPSS
Exploits0References3
CVE
CVE
added 2021/01/12 8:8 a.m.250 views

CVE-2020-35655

Pillow (before 8.1.0) contains a vulnerability in SGIRleDecode: a 4‑byte buffer over-read while decoding crafted SGI RLE images caused by mishandled offsets and length tables.

5.8CVSS6.8AI score0.01573EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2021/01/12 8:8 a.m.31 views

CVE-2020-35655

In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SGI RLE image files because offsets and length tables are mishandled...

5.8CVSS5.7AI score0.01573EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2021/01/12 8:8 a.m.41 views

CVE-2020-35655

In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SGI RLE image files because offsets and length tables are mishandled...

5.8CVSS7.5AI score0.01573EPSS
Exploits0
CVE
CVE
added 2020/01/03 12:52 a.m.341 views

CVE-2020-5311

Pillow’s vulnerability CVE-2020-5311 affects the libImaging/SgiRleDecode.c path and is triggered by an SGI buffer overflow in Pillow versions before 6.2.2. The issue is in the SGI image parsing code, not in a user-provided input path description; impact is partial to high depending on exposure of...

9.8CVSS8.8AI score0.04212EPSS
Exploits0References8Affected Software1
CNVD
CNVD
added 2020/01/03 12:0 a.m.1 views

Pillow SGI Buffer Overflow Vulnerability

Pillow is a Python based image processing library. A buffer overflow vulnerability exists in the libImaging/SgiRleDecode.c file in Pillow versions prior to 6.2.2. The vulnerability stems from a networked system or product that performs operations in memory without properly validating data...

9.8CVSS8AI score0.04212EPSS
Exploits0References1
Rows per page
Query Builder