Описание
Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is decompressed.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | python-imaging | Will not fix | ||
| Red Hat Enterprise Linux 6 | python-imaging | Will not fix | ||
| Red Hat Enterprise Linux 7 | python-pillow | Will not fix |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-770
https://bugzilla.redhat.com/show_bug.cgi?id=1179354python-pillow: potential denial-of-service during PNG decompression
EPSS
Процентиль: 79%
0.01207
Низкий
2.6 Low
CVSS2
Связанные уязвимости
ubuntu
около 11 лет назад
Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is decompressed.
nvd
около 11 лет назад
Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is decompressed.
debian
около 11 лет назад
Pillow before 2.7.0 allows remote attackers to cause a denial of servi ...
EPSS
Процентиль: 79%
0.01207
Низкий
2.6 Low
CVSS2