Lucene search
F5F5:K23413369HistoryMay 06, 2022 - 12:00 a.m.
K23413369 : Python-Pillow vulnerabilities CVE-2022-22816, CVE-2022-22817
2022-05-0600:00:00
my.f5.com
20
Security Advisory Description
- path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path. (CVE-2022-22816)
- PIL.ImageMath.eval in Pillow before 9.0.0 allows evaluation of arbitrary expressions, such as ones that use the Python exec method. A lambda expression could also be used, (CVE-2022-22817)
Impact
There is no impact; F5 products are not affected by this vulnerability.
Related
nessus
nessus
CentOS 7 : python-pillow (CESA-2022:0609)
2022-02-25 00:00:00
RHEL 8 : python-pillow (RHSA-2022:0665)
2022-02-24 00:00:00
AlmaLinux 8 : python-pillow (ALSA-2022:0643)
2022-03-11 00:00:00
oraclelinux
oraclelinux
python-pillow security update
2022-02-23 00:00:00
python-pillow security update
2022-02-23 00:00:00
openvas
openvas
CentOS: Security Advisory for python-pillow (CESA-2022:0609)
2022-02-26 00:00:00
Debian: Security Advisory (DSA-5053-1)
2022-01-26 00:00:00
Fedora: Security Advisory for python-pillow (FEDORA-2022-e4087f9366)
2022-02-04 00:00:00
redhat
redhat
(RHSA-2022:0669) Important: python-pillow security update
2022-02-24 09:24:23
(RHSA-2022:0667) Important: python-pillow security update
2022-02-24 09:24:19
(RHSA-2022:0609) Important: python-pillow security update
2022-02-22 14:19:19
almalinux
almalinux
Important: python-pillow security update
2022-02-22 17:25:31
centos
centos
python security update
2022-02-25 15:38:05
debian
debian
[SECURITY] [DLA 2893-1] pillow security update
2022-01-23 18:58:26
[SECURITY] [DSA 5053-1] pillow security update
2022-01-21 19:25:46
[SECURITY] [DLA 3768-1] pillow security update
2024-03-22 10:00:44
osv
osv
pillow - security update
2022-01-23 00:00:00
Important: python-pillow security update
2022-02-22 17:25:31
Important: python-pillow security update
2022-02-22 17:25:31
fedora
fedora
[SECURITY] Fedora 34 Update: mingw-python-pillow-8.1.2-5.fc34
2022-02-04 01:23:01
[SECURITY] Fedora 35 Update: python-pillow-8.3.2-2.fc35
2022-02-04 01:23:32
[SECURITY] Fedora 35 Update: mingw-python-pillow-8.3.2-2.fc35
2022-02-04 01:23:32
rocky
rocky
python-pillow security update
2022-02-22 17:25:31
redos
redos
ROS-20220128-02
2022-01-28 00:00:00
amazon
amazon
Important: python-pillow
2022-04-25 22:58:00
Important: python-pillow
2022-04-25 22:58:00
Important: python-pillow
2024-02-01 19:57:00
mageia
mageia
Updated python-pillow packages fix security vulnerability
2022-05-12 13:24:45
Updated python-pillow packages fix a security vulnerability
2024-01-30 23:57:03
veracode
veracode
Out Of Bound Reads
2022-01-11 13:16:07
Information Dislcosure
2022-01-11 08:52:21
cve
cve
ubuntu
ubuntu
Pillow vulnerabilities
2022-01-17 00:00:00
Pillow vulnerability
2022-10-24 00:00:00
Pillow vulnerabilities
2022-01-13 00:00:00
github
github
Out-of-bounds Read in Pillow
2022-01-12 20:07:41
Arbitrary expression injection in Pillow
2022-01-12 20:07:33
Arbitrary Code Execution in Pillow
2024-01-19 21:30:35
debiancve
debiancve
ubuntucve
ubuntucve
prion
prion
Design/Logic Flaw
2022-01-10 14:12:00
Design/Logic Flaw
2022-01-10 14:12:00
Code injection
2024-01-19 20:15:00
cvelist
cvelist
alpinelinux
alpinelinux
cnvd
cnvd
Pillow out-of-bounds read vulnerability (CNVD-2022-05433)
2022-01-14 00:00:00
Pillow input validation error vulnerability
2022-01-14 00:00:00
nvd
nvd
redhatcve
redhatcve
CVE-2022-22816
2022-01-19 16:52:40
CVE-2022-22817
2022-01-19 16:52:40
f5
f5
K000138866 : Python Pillow vulnerability CVE-2023-50447
2024-03-09 00:00:00
gentoo
gentoo
Pillow: Multiple Vulnerabilities
2022-11-22 00:00:00
