Buffer overflow in the ImagingPcdDecode
function in PcdDecode.c
in Pillow before 3.1.1 and Python Imaging Library (PIL) 1.1.7 and earlier allows remote attackers to cause a denial of service (crash) via a crafted PhotoCD file.
{ "nvd_published_at": null, "cwe_ids": [ "CWE-119" ], "severity": "HIGH", "github_reviewed": true, "github_reviewed_at": "2020-06-16T20:54:46Z" }