Bitnami package
pillow
pkg:bitnami/pillow
Vulnerabilities (45)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-10378 | — | < 7.1.0 | 7.1.0 | Jun 25, 2020 | In libImaging/PcxDecode.c in Pillow before 7.1.0, an out-of-bounds read can occur when reading PCX files where state->shuffle is instructed to read beyond state->buffer. | ||
| CVE-2020-5310 | — | < 6.2.2 | 6.2.2 | Jan 3, 2020 | libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc. | ||
| CVE-2020-5311 | — | < 6.2.2 | 6.2.2 | Jan 3, 2020 | libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow. | ||
| CVE-2020-5312 | — | < 6.2.2 | 6.2.2 | Jan 3, 2020 | libImaging/PcxDecode.c in Pillow before 6.2.2 has a PCX P mode buffer overflow. | ||
| CVE-2020-5313 | — | < 6.2.2 | 6.2.2 | Jan 3, 2020 | libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow. |
- CVE-2020-10378Jun 25, 2020affected < 7.1.0fixed 7.1.0
In libImaging/PcxDecode.c in Pillow before 7.1.0, an out-of-bounds read can occur when reading PCX files where state->shuffle is instructed to read beyond state->buffer.
- CVE-2020-5310Jan 3, 2020affected < 6.2.2fixed 6.2.2
libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc.
- CVE-2020-5311Jan 3, 2020affected < 6.2.2fixed 6.2.2
libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow.
- CVE-2020-5312Jan 3, 2020affected < 6.2.2fixed 6.2.2
libImaging/PcxDecode.c in Pillow before 6.2.2 has a PCX P mode buffer overflow.
- CVE-2020-5313Jan 3, 2020affected < 6.2.2fixed 6.2.2
libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow.
Page 3 of 3