Количество 8
Количество 8
CVE-2021-28677
An issue was discovered in Pillow before 8.2.0. For EPS data, the readline implementation used in EPSImageFile has to deal with any combination of \r and \n as line endings. It used an accidentally quadratic method of accumulating lines while looking for a line ending. A malicious EPS file could use this to perform a DoS of Pillow in the open phase, before an image was accepted for opening.
CVE-2021-28677
An issue was discovered in Pillow before 8.2.0. For EPS data, the readline implementation used in EPSImageFile has to deal with any combination of \r and \n as line endings. It used an accidentally quadratic method of accumulating lines while looking for a line ending. A malicious EPS file could use this to perform a DoS of Pillow in the open phase, before an image was accepted for opening.
CVE-2021-28677
An issue was discovered in Pillow before 8.2.0. For EPS data, the readline implementation used in EPSImageFile has to deal with any combination of \r and \n as line endings. It used an accidentally quadratic method of accumulating lines while looking for a line ending. A malicious EPS file could use this to perform a DoS of Pillow in the open phase, before an image was accepted for opening.
CVE-2021-28677
An issue was discovered in Pillow before 8.2.0. For EPS data, the read ...
GHSA-q5hq-fp76-qmrc
Uncontrolled Resource Consumption in Pillow
BDU:2021-05313
Уязвимость реализации readline компонента EPSImageFile библиотеки для работы с изображениями Pillow, связанная с недостаточной проверкой входных данных, позволяющая нарушителю вызвать отказ в обслуживании
SUSE-SU-2024:1607-1
Security update for python-Pillow
RLSA-2021:4149
Moderate: python-pillow security update
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-28677 An issue was discovered in Pillow before 8.2.0. For EPS data, the readline implementation used in EPSImageFile has to deal with any combination of \r and \n as line endings. It used an accidentally quadratic method of accumulating lines while looking for a line ending. A malicious EPS file could use this to perform a DoS of Pillow in the open phase, before an image was accepted for opening. | CVSS3: 7.5 | 0% Низкий | больше 4 лет назад |
 | CVE-2021-28677 An issue was discovered in Pillow before 8.2.0. For EPS data, the readline implementation used in EPSImageFile has to deal with any combination of \r and \n as line endings. It used an accidentally quadratic method of accumulating lines while looking for a line ending. A malicious EPS file could use this to perform a DoS of Pillow in the open phase, before an image was accepted for opening. | CVSS3: 7.5 | 0% Низкий | почти 5 лет назад |
 | CVE-2021-28677 An issue was discovered in Pillow before 8.2.0. For EPS data, the readline implementation used in EPSImageFile has to deal with any combination of \r and \n as line endings. It used an accidentally quadratic method of accumulating lines while looking for a line ending. A malicious EPS file could use this to perform a DoS of Pillow in the open phase, before an image was accepted for opening. | CVSS3: 7.5 | 0% Низкий | больше 4 лет назад |
| CVE-2021-28677 An issue was discovered in Pillow before 8.2.0. For EPS data, the read ... | CVSS3: 7.5 | 0% Низкий | больше 4 лет назад |
| GHSA-q5hq-fp76-qmrc Uncontrolled Resource Consumption in Pillow | CVSS3: 7.5 | 0% Низкий | больше 4 лет назад |
 | BDU:2021-05313 Уязвимость реализации readline компонента EPSImageFile библиотеки для работы с изображениями Pillow, связанная с недостаточной проверкой входных данных, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 0% Низкий | почти 5 лет назад |
 | SUSE-SU-2024:1607-1 Security update for python-Pillow | больше 1 года назад | ||
 | RLSA-2021:4149 Moderate: python-pillow security update | около 4 лет назад |
Уязвимостей на страницу