Описание
PIL.ImageMath.eval in Pillow before 9.0.0 allows evaluation of arbitrary expressions, such as ones that use the Python exec method. A lambda expression could also be used.
A flaw was found in python-pillow. The vulnerability occurs due to Improper Neutralization, leading to command injection. This flaw allows an attacker to externally-influenced input commands that modify the intended command.
Отчет
Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImageMath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Quay 3 | quay/quay-rhel8 | Affected | ||
| Red Hat Enterprise Linux 7 | python-pillow | Fixed | RHSA-2022:0609 | 22.02.2022 |
| Red Hat Enterprise Linux 8 | python-pillow | Fixed | RHSA-2022:0643 | 22.02.2022 |
| Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions | python-pillow | Fixed | RHSA-2022:0669 | 24.02.2022 |
| Red Hat Enterprise Linux 8.2 Extended Update Support | python-pillow | Fixed | RHSA-2022:0667 | 24.02.2022 |
| Red Hat Enterprise Linux 8.4 Extended Update Support | python-pillow | Fixed | RHSA-2022:0665 | 24.02.2022 |
Показывать по
Дополнительная информация
Статус:
EPSS
9.8 Critical
CVSS3
Связанные уязвимости
PIL.ImageMath.eval in Pillow before 9.0.0 allows evaluation of arbitrary expressions, such as ones that use the Python exec method. A lambda expression could also be used.
PIL.ImageMath.eval in Pillow before 9.0.0 allows evaluation of arbitrary expressions, such as ones that use the Python exec method. A lambda expression could also be used.
PIL.ImageMath.eval in Pillow before 9.0.0 allows evaluation of arbitra ...
Уязвимость компонента PIL.ImageMath.eval библиотеки изображений Python Pillow, связанная с использованием опасных методов или функций, позволяющая нарушителю выполнить произвольный код
EPSS
9.8 Critical
CVSS3