Lucene search
PRIOn knowledge basePRION:CVE-2020-11538HistoryJun 25, 2020 - 7:15 p.m.
Out-of-bounds
2020-06-2519:15:00
PRIOn knowledge base
www.prio-n.com
7
In libImaging/SgiRleDecode.c in Pillow through 7.0.0, a number of out-of-bounds reads exist in the parsing of SGI image files, a different issue than CVE-2020-5311.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ubuntu_linux | eq | 18.04 | |
| ubuntu_linux | eq | 20.04 | |
| ubuntu_linux | eq | 16.04 | |
| fedora | eq | 31 | |
| fedora | eq | 32 | |
| pillow | le | 7.0.0 |
References
github.com/python-pillow/Pillow/pull/4504
github.com/python-pillow/Pillow/pull/4538
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BEBCPE4F2VHTIT6EZA2YZQZLPVDEBJGD/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HOKHNWV2VS5GESY7IBD237E7C6T3I427/
pillow.readthedocs.io/en/stable/releasenotes/7.1.0.html
pillow.readthedocs.io/en/stable/releasenotes/index.html
usn.ubuntu.com/4430-1/
usn.ubuntu.com/4430-2/
Related
osv
osv
PYSEC-2020-80
2020-06-25 19:15:00
BIT-pillow-2020-11538
2024-03-06 11:06:47
CVE-2020-11538
2020-06-25 19:15:12
cve
cve
CVE-2020-11538
2020-06-25 19:15:12
CVE-2020-5311
2020-01-03 01:15:11
github
github
Out-of-bounds read in Pillow
2020-07-27 21:52:36
Buffer Copy without Checking Size of Input in Pillow
2022-05-24 17:05:33
nvd
nvd
CVE-2020-11538
2020-06-25 19:15:12
CVE-2020-5311
2020-01-03 01:15:11
ubuntucve
ubuntucve
CVE-2020-11538
2020-06-25 00:00:00
CVE-2020-5311
2020-01-03 00:00:00
debiancve
debiancve
CVE-2020-11538
2020-06-25 19:15:12
CVE-2020-5311
2020-01-03 01:15:11
cvelist
cvelist
CVE-2020-11538
2020-06-25 18:32:06
CVE-2020-5311
2020-01-03 00:52:42
openvas
openvas
Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2020-2024)
2020-09-29 00:00:00
Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2020-1877)
2020-08-31 00:00:00
Mageia: Security Advisory (MGASA-2020-0434)
2022-01-28 00:00:00
nessus
nessus
EulerOS 2.0 SP8 : python-pillow (EulerOS-SA-2020-1877)
2020-08-28 00:00:00
Rocky Linux 8 : python-pillow (RLSA-2020:3185)
2023-11-06 00:00:00
redhatcve
redhatcve
CVE-2020-11538
2020-07-01 11:20:51
CVE-2020-5311
2020-01-09 19:09:04
prion
prion
Buffer overflow
2020-01-03 01:15:00
veracode
veracode
Denial Of Service (DoS)
2020-06-26 03:28:33
Denial Of Service (DoS)
2020-01-06 03:50:25
redhat
redhat
(RHSA-2020:3299) Important: python-pillow security update
2020-08-04 07:13:18
(RHSA-2020:3302) Important: python-pillow security update
2020-08-04 10:18:31
(RHSA-2020:3185) Important: python-pillow security update
2020-07-28 13:17:06
alpinelinux
alpinelinux
CVE-2020-5311
2020-01-03 01:15:11
almalinux
almalinux
Important: python-pillow security update
2020-07-28 13:17:06
rocky
rocky
python-pillow security update
2020-07-28 13:17:06
oraclelinux
oraclelinux
python-pillow security update
2020-07-29 00:00:00
python-pillow security update
2020-02-25 00:00:00
ubuntu
ubuntu
Pillow vulnerabilities
2020-07-22 00:00:00
Pillow vulnerabilities
2020-07-23 00:00:00
Pillow vulnerabilities
2020-02-06 00:00:00
mageia
mageia
Updated python-pillow packages fix security vulnerabilities
2020-11-23 22:51:37
Updated python-pillow packages fix security vulnerabilities
2020-02-18 17:05:53
fedora
fedora
[SECURITY] Fedora 32 Update: python-pillow-7.0.0-4.fc32
2020-07-04 01:14:29
[SECURITY] Fedora 31 Update: python-pillow-6.2.2-3.fc31
2020-07-10 01:02:19
[SECURITY] Fedora 30 Update: python-pillow-5.4.1-4.fc30
2020-02-22 01:16:45
debian
debian
[SECURITY] [DSA 4631-1] pillow security update
2020-02-21 20:22:04
freebsd
freebsd
Pillow -- Multiple vulnerabilities
2019-12-19 00:00:00
ibm
ibm
rosalinux
rosalinux
Advisory ROSA-SA-2021-1957
2021-07-02 18:03:40