4 matches found
Security Bulletin: IBM Edge Data Collector uses pillow-12.1.1-cp314-cp314-manylinux_2_27_x86_64.manylinux_2_28_x86_64.whl which is vulnerable to CVE-2026-40192
Summary IBM Edge Data Collector Component uses pillow-12.1.1-cp314-cp314-manylinux227x8664.manylinux228x8664.whl which is vulnerable to CVE-2026-40192. This bulletin contains information addressing the vulnerability. Vulnerability Details CVEID:CVE-2026-40192 DESCRIPTION: Pillow is a Python imagi...
CVE-2026-40192 vulnerabilities
Vulnerabilities for packages: superset, kubeflow-pipelines-visualization-server...
OPENSUSE-SU-2026:20617-1 Security update for python-Pillow
This update for python-Pillow fixes the following issue: - CVE-2026-40192: Versions 10.3.0 through 12.1.1 did not limit the amount of GZIP-compressed data read when decoding a FITS image, making them vulnerable to decompression bomb attacks bsc1262184...
CVE-2026-40192 vulnerabilities
Vulnerabilities for packages: superset, open-webui, tritonserver-backend-vllm-cuda-12.9, litellm, py3-vllm-cuda-12.4, text-generation-inference, kubeflow-pipelines-visualization-server...