vulnerability
FreeBSD: VID-998CA824-EF55-11E9-B81F-3085A9A95629 (CVE-2019-16865): Pillow -- Allocation of resources without limits or throttling
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:N/A:P) | Sep 24, 2019 | Oct 16, 2019 | Mar 5, 2020 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
Sep 24, 2019
Added
Oct 16, 2019
Modified
Mar 5, 2020
Description
An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid image files, the library can either allocate very large amounts of memory or take an extremely long period of time to process the image.
Solution(s)
freebsd-upgrade-package-py27-pillowfreebsd-upgrade-package-py35-pillowfreebsd-upgrade-package-py36-pillowfreebsd-upgrade-package-py37-pillow
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.