Lucene search
F5F5:K000138517HistoryFeb 07, 2024 - 12:00 a.m.
K000138517 : Python-Pillow vulnerability CVE-2023-44271
2024-02-0700:00:00
my.f5.com
13
python
pillow
denial of service
imagefont
cve-2023-44271
Security Advisory Description
An issue was discovered in Pillow before 10.0.0. It is a Denial of Service that uncontrollably allocates memory to process a given task, potentially causing a service to crash by having it run out of memory. This occurs for truetype in ImageFont when textlength in an ImageDraw instance operates on a long text argument. (CVE-2023-44271)
Impact
There is no impact; F5 products are not affected by this vulnerability.
Related
osv
osv
BIT-pillow-2023-44271
2024-03-06 11:01:40
Moderate: python-pillow security update
2024-05-22 00:00:00
PYSEC-2023-227
2023-11-03 05:15:00
oraclelinux
oraclelinux
python-pillow security update
2024-01-23 00:00:00
python-pillow security update
2024-05-23 00:00:00
nessus
nessus
Rocky Linux 8 : python-pillow (RLSA-2024:3005)
2024-06-14 00:00:00
Oracle Linux 7 : python-pillow (ELSA-2024-0345)
2024-01-23 00:00:00
RHEL 8 : python-pillow (RHSA-2024:3005)
2024-05-23 00:00:00
debiancve
debiancve
CVE-2023-44271
2023-11-03 05:15:30
openvas
openvas
Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2024-1095)
2024-01-09 00:00:00
CentOS: Security Advisory for python-pillow (CESA-2024:0345)
2024-03-05 00:00:00
openSUSE: Security Advisory for python (SUSE-SU-2023:4528-1)
2024-03-04 00:00:00
cvelist
cvelist
CVE-2023-44271
2023-11-03 00:00:00
ibm
ibm
Security Bulletin: Pillow-9.3.0-cp37-cp37m-manylinux_2_28_x86_64.whl is vulnerable to CVE-2023-44271 used in IBM Maximo Application Suite - Edge Data Collector
2024-03-05 09:15:22
fedora
fedora
[SECURITY] Fedora 38 Update: python-pillow-9.5.0-1.fc38
2023-11-12 01:43:47
amazon
amazon
Medium: python-pillow
2024-03-27 21:32:00
veracode
veracode
Denial Of Service (DoS)
2023-11-06 10:49:50
ubuntucve
ubuntucve
CVE-2023-44271
2023-11-03 00:00:00
cve
cve
CVE-2023-44271
2023-11-03 05:15:30
nvd
nvd
CVE-2023-44271
2023-11-03 05:15:30
redhat
redhat
(RHSA-2024:3005) Moderate: python-pillow security update
2024-05-22 06:35:19
(RHSA-2024:0345) Moderate: python-pillow security update
2024-01-23 15:58:23
prion
prion
Code injection
2023-11-03 05:15:00
redhatcve
redhatcve
CVE-2023-44271
2023-11-03 16:56:36
github
github
Pillow Denial of Service vulnerability
2023-11-03 06:36:30
rocky
rocky
python-pillow security update
2024-06-14 13:59:30
almalinux
almalinux
Moderate: python-pillow security update
2024-05-22 00:00:00
centos
centos
python security update
2024-01-26 18:08:27
rosalinux
rosalinux
Advisory ROSA-SA-2024-2392
2024-04-11 07:13:20
gentoo
gentoo
Pillow: Multiple Vulnerabilities
2024-05-05 00:00:00
mageia
mageia
Updated python-pillow packages fix security vulnerabilities
2024-04-15 21:21:57
ubuntu
ubuntu
Pillow vulnerabilities
2024-01-30 00:00:00
debian
debian
[SECURITY] [DLA 3768-1] pillow security update
2024-03-22 10:00:44
[SECURITY] [DSA 5704-1] pillow security update
2024-06-05 18:59:18
hp
hp
HP ThinPro 8.0 SP 9 Security Updates
2024-06-17 00:00:00
HP ThinPro 8.1 SP 2 Security Updates
2024-04-12 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2024
2024-04-16 00:00:00