libImaging/TgaRleDecode.c in Pillow 9.1.0 has a heap buffer overflow in the processing of invalid TGA image files.
{ "severity": "Critical", "cpes": [ "cpe:2.3:a:python:pillow:9.1.0:*:*:*:*:*:*:*", "cpe:2.3:a:python:pillow:*:*:*:*:*:*:*:*" ] }