VYPR
High severityNVD Advisory· Published Oct 4, 2019· Updated Aug 5, 2024

CVE-2019-16865

CVE-2019-16865

Description

An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid image files, the library can either allocate very large amounts of memory or take an extremely long period of time to process the image.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
pillowPyPI
< 6.2.06.2.0

Affected products

299

Patches

Vulnerability mechanics

References

20

News mentions

0

No linked articles in our index yet.