CVE-2020-10994

Опубликовано: 25 июн. 2020

Источник: debian

Описание

In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multiple out-of-bounds reads via a crafted JP2 file.

Пакет	Статус	Версия исправления	Релиз	Тип
pillow	fixed	7.2.0-1		package

CVE-2020-10994

CVSS3: 5.5

ubuntu

больше 5 лет назад

In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multiple out-of-bounds reads via a crafted JP2 file.

CVE-2020-10994

CVSS3: 5.3

redhat

больше 5 лет назад

In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multiple out-of-bounds reads via a crafted JP2 file.

CVE-2020-10994

CVSS3: 5.5

nvd

больше 5 лет назад

In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multiple out-of-bounds reads via a crafted JP2 file.

GHSA-vj42-xq3r-hr3r

CVSS3: 5.5

github

больше 5 лет назад

Out-of-bounds reads in Pillow