Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2024-28219

Опубликовано: 01 апр. 2024
Источник: redhat
CVSS3: 6.5
EPSS Низкий

Описание

In _imagingcms.c in Pillow before 10.3.0, a buffer overflow exists because strcpy is used instead of strncpy.

A flaw was found in Pillow. The cms_transform_new function in src/_imagingcms.c does not validate the length of its parameters before copying them into fixed-size buffers, leading to a buffer overflow, resulting in a denial of service.

Отчет

This flaw can be triggered when the ImageCms.buildTransform function is called with the InMode or OutMode arguments with a string larger than 8 bytes. An application is not vulnerable if these parameters are not controlled by the user or are validated before the function is called. Additionally, the Pillow ImageCms module functions should not be exposed to untrusted usage without input validation. For this reason, this flaw has been rated with a moderate impact.

Меры по смягчению последствий

Make sure the ImageCms.buildTransform function is not called with the InMode or OutMode arguments with a string bigger than 8 bytes.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 7python-pillowOut of support scope
Red Hat Quay 3quay/quay-rhel8Affected
Red Hat Ansible Automation Platform 2.4 for RHEL 8python3x-pillowFixedRHSA-2024:378110.06.2024
Red Hat Ansible Automation Platform 2.4 for RHEL 9python-pillowFixedRHSA-2024:378110.06.2024
Red Hat Enterprise Linux 8python-pillowFixedRHSA-2024:422702.07.2024
Red Hat Satellite 6.15 for RHEL 8python-pillowFixedRHSA-2024:566220.08.2024
Red Hat Satellite 6.15 for RHEL 8python-pillowFixedRHSA-2024:566220.08.2024

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-20->CWE-120
https://bugzilla.redhat.com/show_bug.cgi?id=2272563python-pillow: buffer overflow in _imagingcms.c

EPSS

Процентиль: 28%
0.00095
Низкий

6.5 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2024-28219

CVSS3: 6.7
ubuntu
около 1 года назад

In _imagingcms.c in Pillow before 10.3.0, a buffer overflow exists because strcpy is used instead of strncpy.

nvd логотип

CVE-2024-28219

CVSS3: 6.7
nvd
около 1 года назад

In _imagingcms.c in Pillow before 10.3.0, a buffer overflow exists because strcpy is used instead of strncpy.

debian логотип

CVE-2024-28219

CVSS3: 6.7
debian
около 1 года назад

In _imagingcms.c in Pillow before 10.3.0, a buffer overflow exists bec ...

suse-cvrf логотип

SUSE-SU-2024:1258-1

suse-cvrf
около 1 года назад

Security update for python-Pillow

suse-cvrf логотип

SUSE-SU-2024:1154-1

suse-cvrf
около 1 года назад

Security update for python-Pillow

EPSS

Процентиль: 28%
0.00095
Низкий

6.5 Medium

CVSS3