Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2021-34552

Опубликовано: 13 июл. 2021
Источник: redhat
CVSS3: 5.9
EPSS Низкий

Описание

Pillow through 8.2.0 and PIL (aka Python Imaging Library) through 1.1.7 allow an attacker to pass controlled parameters directly into a convert function to trigger a buffer overflow in Convert.c.

A flaw was found in python-pillow. This flaw allows an attacker to pass controlled parameters directly into a convert function, triggering a buffer overflow in the "convert()" or "ImagingConvertTransparent()" functions in Convert.c. The highest threat to this vulnerability is to system availability. In Red Hat Quay, a vulnerable version of python-pillow is shipped with quay-registry-container, however the invoice generation feature which uses python-pillow is disabled by default. Therefore impact has been rated Moderate.

Отчет

Due to the compiler options used, the buffer overflow is detected and the impact is lowered to a crash only. Additionally, the "mode" parameter has to be attacker controlled, which is considered a rare case.

Меры по смягчению последствий

To mitigate this flaw on Red Hat Quay, keep the invoice generation feature disabled, as it is by default. Red Hat Satellite 6.9 customers can apply following hotfix to eliminate the vulnerability warnings.

satellite-maintain service stop

  • Upgrade python2-daemon and remove affected package

rpm -Uvh python2-daemon-2.1.2-7.1.HFRHBZ1998199.el7sat.noarch.rpm

yum remove python-pillow

  • Restart services:

satellite-maintain service start

Satellite 6.10 future release is also fixing this.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 7python-pillowOut of support scope
Red Hat Enterprise Linux 8python-pillowFixedRHSA-2021:414909.11.2021
Red Hat Quay 3quay/quay-rhel8FixedRHSA-2021:391719.10.2021

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-119
https://bugzilla.redhat.com/show_bug.cgi?id=1982378python-pillow: Buffer overflow in image convert function

EPSS

Процентиль: 54%
0.0032
Низкий

5.9 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2021-34552

CVSS3: 9.8
ubuntu
около 4 лет назад

Pillow through 8.2.0 and PIL (aka Python Imaging Library) through 1.1.7 allow an attacker to pass controlled parameters directly into a convert function to trigger a buffer overflow in Convert.c.

nvd логотип

CVE-2021-34552

CVSS3: 9.8
nvd
около 4 лет назад

Pillow through 8.2.0 and PIL (aka Python Imaging Library) through 1.1.7 allow an attacker to pass controlled parameters directly into a convert function to trigger a buffer overflow in Convert.c.

debian логотип

CVE-2021-34552

CVSS3: 9.8
debian
около 4 лет назад

Pillow through 8.2.0 and PIL (aka Python Imaging Library) through 1.1. ...

rocky логотип

RLSA-2021:4149

rocky
больше 3 лет назад

Moderate: python-pillow security update

github логотип

GHSA-7534-mm45-c74v

CVSS3: 9.8
github
почти 4 года назад

Buffer Overflow in Pillow

EPSS

Процентиль: 54%
0.0032
Низкий

5.9 Medium

CVSS3