Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-whj4-6x5x-4v2j
  • PyPI/pillow
 FITS GZIP decompression bomb in Pillow 3 days ago
  • Fix available
  • Severity - 8.7 (High)
GHSA-cfh3-3jmp-rvhc
  • PyPI/pillow
 Pillow affected by out-of-bounds write when loading PSD images 11 Feb
  • Fix available
  • Severity - 8.9 (High)
PYSEC-2025-61
  • PyPI/pillow
  • github.com/python-pillow/pillow
 See record for full details 01 Jul 2025
  • Fix available
GHSA-xg8h-j46f-w952
  • PyPI/pillow
 Pillow vulnerability can cause write buffer overflow on BCn encoding 01 Jul 2025
  • Fix available
  • Severity - 7.1 (High)
GHSA-44wm-f244-xhp3
  • PyPI/pillow
 Pillow buffer overflow vulnerability 03 Apr 2024
  • Fix available
  • Severity - 7.3 (High)
GHSA-3f63-hfp8-52jq
  • PyPI/pillow
 Arbitrary Code Execution in Pillow 19 Jan 2024
  • Fix available
  • Severity - 9.3 (Critical)
GHSA-8ghj-p4vj-mr35
  • PyPI/pillow
 Pillow Denial of Service vulnerability 03 Nov 2023
  • Fix available
  • Severity - 8.7 (High)
PYSEC-2023-227
  • PyPI/pillow
  • github.com/python-pillow/Pillow
 See record for full details 03 Nov 2023
  • Fix available
PYSEC-2023-175
  • PyPI/pillow
 See record for full details 20 Sep 2023
  • Fix available
GHSA-j7hp-h8jx-5ppr
  • Go/github.com/chai2010/webp
  • NuGet/SkiaSharp
  • NuGet/magick.net-q16-anycpu
  • NuGet/magick.net-q16-hdri-anycpu
  • NuGet/magick.net-q16-x64
  • ... 8 more
 libwebp: OOB write in BuildHuffmanTable 12 Sep 2023
  • Fix available
  • Severity - 8.8 (High)
GHSA-m2vv-5vj5-2hm7
  • PyPI/pillow
 Pillow vulnerable to Data Amplification attack. 14 Nov 2022
  • Fix available
  • Severity - 8.7 (High)
GHSA-q4mp-jvh2-76fj
  • PyPI/pillow
 Pillow subject to DoS via SAMPLESPERPIXEL tag 14 Nov 2022
  • Fix available
  • Severity - 8.7 (High)
PYSEC-2022-42979
  • PyPI/pillow
  • github.com/python-pillow/Pillow
 See record for full details 14 Nov 2022
  • Fix available
PYSEC-2022-42980
  • PyPI/pillow
  • github.com/python-pillow/Pillow
 See record for full details 14 Nov 2022
  • Fix available
OSV-2022-1074
  • PyPI/pillow
  • github.com/python-pillow/Pillow
 Invalid-free in _dealloc 22 Oct 2022
  • Fix available
OSV-2022-715
  • PyPI/pillow
  • github.com/python-pillow/Pillow
 Segv on unknown address in jpeg_read_scanlines 15 Aug 2022
  • Fix available
Load more...