CESA-2020:0578 -- centos 7 python-pillowID: oval:org.secpod.oval:def:205447 | Date: (C)2020-02-26 (M)2023-12-20 |
Class: PATCH | Family: unix |
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities. Security Fix: * python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c * python-pillow: reading specially crafted image files leads to allocation of large amounts of memory and denial of service For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.