There are 6 open security issues in bullseye.
2 important issues:
- CVE-2023-50447:
Pillow through 10.1.0 allows PIL.ImageMath.eval Arbitrary Code Execution via the environment parameter, a different vulnerability than CVE-2022-22817 (which was about the expression parameter).
- CVE-2024-28219:
In _imagingcms.c in Pillow before 10.3.0, a buffer overflow exists because strcpy is used instead of strncpy.
3 issues left for the package maintainer to handle:
- CVE-2021-23437:
(needs triaging)
The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function.
- CVE-2022-45198:
(needs triaging)
Pillow before 9.2.0 performs Improper Handling of Highly Compressed GIF Data (Data Amplification).
- CVE-2023-44271:
(needs triaging)
An issue was discovered in Pillow before 10.0.0. It is a Denial of Service that uncontrollably allocates memory to process a given task, potentially causing a service to crash by having it run out of memory. This occurs for truetype in ImageFont when textlength in an ImageDraw instance operates on a long text argument.
You can find information about how to handle these issues in the security team's documentation.
1 ignored issue:
- CVE-2022-24303:
Pillow before 9.0.1 allows attackers to delete files because spaces in temporary pathnames are mishandled.