vulnerability
Red Hat: CVE-2021-34552: CVE-2021-34552 python-pillow: Buffer overflow in image convert function (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:P/I:P/A:P) | Jul 13, 2021 | Nov 10, 2021 | Feb 20, 2026 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
Jul 13, 2021
Added
Nov 10, 2021
Modified
Feb 20, 2026
Description
Pillow through 8.2.0 and PIL (aka Python Imaging Library) through 1.1.7 allow an attacker to pass controlled parameters directly into a convert function to trigger a buffer overflow in Convert.c.
Solutions
redhat-upgrade-python-pillow-debuginforedhat-upgrade-python-pillow-debugsourceredhat-upgrade-python3-pillowredhat-upgrade-python3-pillow-debuginforedhat-upgrade-python3-pillow-tk-debuginfo
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.