📦 Pillow

CVE-2022-30595 is a critical heap buffer overflow vulnerability in Pillow's TGA image processing library. Attackers can exploit this by crafting malicious TGA image files to potentially execute arbitr...

This vulnerability in Pillow (Python Imaging Library) allows attackers to delete arbitrary files on the system due to improper handling of spaces in temporary pathnames. Attackers can exploit this by ...

CVE-2022-22817 is a critical vulnerability in Pillow's ImageMath.eval function that allows arbitrary Python code execution through expression evaluation. This affects applications using Pillow for ima...

This CVE describes a buffer overflow vulnerability in Pillow (Python Imaging Library) that allows attackers to pass controlled parameters to trigger memory corruption. Attackers could potentially exec...

This vulnerability is an out-of-bounds read in Pillow's JPEG 2000 decoder that could allow attackers to read sensitive data from memory or cause denial of service. It affects applications using Pillow...

Pillow versions 10.3.0 through 12.1.0 contain an out-of-bounds write vulnerability when processing specially crafted PSD image files. This could allow attackers to execute arbitrary code or crash appl...

This CVE describes a heap buffer overflow vulnerability in the Python Pillow library when saving large DDS format images. Attackers could potentially execute arbitrary code or crash applications by pr...

This vulnerability in Pillow (Python Imaging Library) allows attackers to cause Denial of Service (DoS) through a Regular Expression Denial of Service (ReDoS) attack via the getrgb function. The vulne...

This vulnerability in Pillow's FLI image decoder allows attackers to cause a denial-of-service (DoS) condition by triggering an infinite loop when processing specially crafted FLI files. It affects ap...

This vulnerability in Pillow (Python Imaging Library) allows attackers to cause denial of service through memory exhaustion by exploiting improper size validation of BLP image containers. Attackers ca...

This vulnerability in Pillow (Python Imaging Library) allows attackers to cause denial of service through memory exhaustion by providing specially crafted ICO image files. The library fails to properl...

This vulnerability in Pillow's PCX file decoder allows attackers to read beyond allocated memory buffers when processing malicious PCX files. It affects applications using Pillow to handle PCX images,...