Описание
The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 5.1.0-1ubuntu0.7 |
| devel | released | 9.0.0-1 |
| esm-infra-legacy/trusty | released | 2.3.0-1ubuntu3.4+esm3 |
| esm-infra/bionic | released | 5.1.0-1ubuntu0.7 |
| esm-infra/focal | released | 7.0.0-4ubuntu0.5 |
| esm-infra/xenial | released | 3.1.2-0ubuntu1.6+esm1 |
| focal | released | 7.0.0-4ubuntu0.5 |
| hirsute | released | 8.1.2-1ubuntu0.2 |
| impish | released | 8.1.2+dfsg-0.3ubuntu0.1 |
| jammy | released | 9.0.0-1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | DNE | |
| esm-apps/focal | needs-triage | |
| esm-infra-legacy/trusty | DNE | |
| focal | ignored | end of standard support, was needs-triage |
| hirsute | DNE | |
| impish | DNE | |
| jammy | DNE | |
| kinetic | DNE | |
| lunar | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| hirsute | DNE | |
| impish | DNE | |
| jammy | DNE | |
| kinetic | DNE | |
| lunar | DNE |
Показывать по
EPSS
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function.
The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function.
The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Ex ...
Уязвимость функции getrgb библиотеки для работы с растровой графикой Pillow, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
5 Medium
CVSS2
7.5 High
CVSS3