vulnerability

Ubuntu: USN-4763-1 (CVE-2021-25291): Pillow vulnerabilities

Try Surface Command
Back to search
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
Mar 11, 2021
Added
Mar 12, 2021
Modified
Jan 23, 2025

Description

An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is an out-of-bounds read in TiffreadRGBATile via invalid tile boundaries.

Solution(s)

ubuntu-upgrade-python-pilubuntu-upgrade-python3-pil

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today