vulnerability
FreeBSD: VID-998CA824-EF55-11E9-B81F-3085A9A95629 (CVE-2019-16865): Pillow -- Allocation of resources without limits or throttling
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
5 | (AV:N/AC:L/Au:N/C:N/I:N/A:P) | Sep 24, 2019 | Oct 16, 2019 | Mar 5, 2020 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
Sep 24, 2019
Added
Oct 16, 2019
Modified
Mar 5, 2020
Description
An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid image files, the library can either allocate very large amounts of memory or take an extremely long period of time to process the image.
Solution(s)
freebsd-upgrade-package-py27-pillowfreebsd-upgrade-package-py35-pillowfreebsd-upgrade-package-py36-pillowfreebsd-upgrade-package-py37-pillow
References

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.