pkg:Debian/pillow

All known vulnerabilities

• CRITICAL9.8CVE-2020-5311Buffer Copy without Checking Size of Input in Pillow
  from 0, < 7.0.0-1
• CRITICAL9.8CVE-2014-3007Pillow command injection
  from 0, < 2.4.0-1
• CRITICAL9.8CVE-2022-22817Arbitrary expression injection in Pillow
  from 0, < 8.1.2+dfsg-0.3+deb11u1
• CRITICAL9.8PCX P mode buffer overflow in Pillow
  from 0, < 7.0.0-1
• CRITICAL9.8Buffer Overflow in Pillow
  from 0, < 8.1.2+dfsg-0.3
• CRITICAL9.8Out of bounds write in Pillow
  from 0, < 8.1.1-1
• CRITICAL9.8Pillow Integer overflow in ImagingResampleHorizontal
  from 0, < 3.1.1-1
• CRITICAL9.1Path traversal in Pillow
  from 0, < 8.1.2+dfsg-0.3+deb11u3
• CRITICAL9.1Pillow Out-of-bounds Read vulnerability
  from 0, < 8.1.2+dfsg-0.2
• CRITICAL9.1Out-of-bounds Read in Pillow
  from 0, < 8.1.2+dfsg-0.2
• HIGH8.8Integer overflow in Pillow
  from 0, < 7.0.0-1
• HIGH8.8Pillow Out-of-bounds Write
  from 0, < 8.1.0-1
• HIGH8.1pillow - security update
  from 0, < 8.1.2+dfsg-0.3+deb11u2
• HIGH8.1pillow - security update
  from 0, < 5.4.1-2+deb10u4
• HIGH8.1Out-of-bounds read in Pillow
  from 0, < 7.2.0-1
• HIGH7.8Pillow has an OOB Write with Invalid PSD Tile Extents (Integer Overflow)
  from 0
• HIGH7.8Buffer overflow in Pillow
  from 0, < 7.2.0-1
• HIGH7.8Arbitrary code using "crafted image file" approach affecting Pillow
  from 0, < 3.4.2-1
• HIGH7.7PIL and Pillow Vulnerable to Symlink Attack on Tmpfiles
  from 0, < 2.4.0-1
• HIGH7.5FITS GZIP decompression bomb in Pillow
  from 0, < 11.1.0-5+deb13u2
• HIGH7.5pillow - security update
  from 0, < 11.1.0-5+deb13u1
• HIGH7.5pillow - security update
  from 0, < 11.1.0-5+deb13u1
• HIGH7.5pillow - security update
  from 0, < 8.1.2+dfsg-0.3+deb11u2
• HIGH7.5pillow - security update
  from 0, < 8.1.2+dfsg-0.3+deb11u2
• HIGH7.5Pillow vulnerable to Data Amplification attack.
  from 0, < 8.1.2+dfsg-0.3+deb11u3
• HIGH7.5Pillow subject to DoS via SAMPLESPERPIXEL tag
  from 0, < 9.3.0-1
• HIGH7.5Buffer over-flow in Pillow
  from 0, < 9.1.1-1
• HIGH7.5Pillow denial of service via PNG bomb
  from 0, < 2.6.1-2
• HIGH7.5python-imaging - security update
  from 0, < 2.5.3-1
• HIGH7.5Pillow is vulnerable to Denial of Service (DOS) in the Jpeg2KImagePlugin
  from 0, < 2.5.3-1
• HIGH7.5pillow - security update
  from 0, < 8.1.2+dfsg-0.3+deb11u3
• HIGH7.5pillow - security update
  from 0, < 8.1.2+dfsg-0.3+deb11u3
• HIGH7.5pillow - security update
  from 0, < 5.4.1-2+deb10u5
• HIGH7.5Uncontrolled Resource Consumption in Pillow
  from 0, < 8.1.2+dfsg-0.2
• HIGH7.5Potential infinite loop in Pillow
  from 0, < 8.1.2+dfsg-0.2
• HIGH7.5Out of bounds read in Pillow
  from 0, < 8.1.1-1
• HIGH7.5Out-of-bounds Write in Pillow
  from 0, < 8.1.1-1
• HIGH7.5Out of bounds read in Pillow
  from 0, < 8.1.1-1
• HIGH7.5Pillow Uncontrolled Resource Consumption
  from 0, < 8.1.2-1
• HIGH7.5Pillow Denial of Service by Uncontrolled Resource Consumption
  from 0, < 8.1.2-1
• HIGH7.5Pillow Denial of Service by Uncontrolled Resource Consumption
  from 0, < 8.1.2-1
• HIGH7.5pillow - security update
  from 0, < 7.0.0-1
• HIGH7.5pillow - security update
  from 0, < 2.6.1-2+deb8u4
• HIGH7.5pillow - security update
  from 0, < 4.0.0-4+deb9u1
• HIGH7.5DOS attack in Pillow when processing specially crafted image files
  from 0, < 6.2.0-1
• HIGH7.1pillow - security update
  from 0, < 8.1.0-1
• HIGH7.1pillow - security update
  from 0, < 4.0.0-4+deb9u3
• HIGH7.1Out-of-bounds Read in Pillow
  from 0, < 7.0.0-1
• MEDIUM6.7pillow - security update
  from 0, < 8.1.2+dfsg-0.3+deb11u2
• MEDIUM6.7pillow - security update
  from 0, < 5.4.1-2+deb10u6
• MEDIUM6.5pillow - security update
  from 0, < 5.4.1-2+deb10u3
• MEDIUM6.5pillow - security update
  from 0, < 4.0.0-4+deb9u4
• MEDIUM6.5pillow - security update
  from 0, < 8.1.2+dfsg-0.3+deb11u1
• MEDIUM6.5Out-of-bounds Read in Pillow
  from 0, < 8.1.2+dfsg-0.3+deb11u1
• MEDIUM6.5Regular Expression Denial of Service (ReDoS) in Pillow
  from 0, < 8.1.1-1
• MEDIUM6.5python-imaging - security update
  from 0, < 3.1.1-1
• MEDIUM6.5Pillow buffer overflow in ImagingPcdDecode
  from 0, < 3.1.1-1
• MEDIUM6.5pillow - security update
  from 0, < 3.1.1-1
• MEDIUM6.5pillow - security update
  from 0, < 2.6.1-2+deb8u2
• MEDIUM5.5Pillow has a PDF Parsing Trailer Infinite Loop (DoS)
  from 0
• MEDIUM5.5Pillow has an integer overflow when processing fonts
  from 0
• MEDIUM5.5Pillow has a heap buffer overflow with nested list coordinates
  from 0, < 12.2.0-1
• MEDIUM5.5Pillow Buffer overflow in Jpeg2KEncode.c
  from 0, < 3.2.0-1
• MEDIUM5.5Out-of-bounds read in Pillow
  from 0, < 7.2.0-1
• MEDIUM5.5Insufficient Verification of Data Authenticity in Pillow
  from 0, < 8.1.2+dfsg-0.2
• MEDIUM5.5Pillow denial of service
  from 0, < 8.1.2+dfsg-0.2
• MEDIUM5.5pillow - security update
  from 0, < 7.2.0-1
• MEDIUM5.5pillow - security update
  from 0, < 4.0.0-4+deb9u2
• MEDIUM5.5Out-of-bounds reads in Pillow
  from 0, < 7.2.0-1
• MEDIUM5.5pillow - security update
  from 0, < 3.4.2-1
• MEDIUM5.5pillow - security update
  from 0, < 2.6.1-2+deb8u3
• MEDIUM5.4Pillow Out-of-bounds Read
  from 0, < 8.1.0-1
• MEDIUM4.0Pillow Temporary file name leakage
  from 0, < 2.4.0-1