Vulnerabilities > Python > Pillow > 2.9.0

DATE CVE VULNERABILITY TITLE RISK
2016-04-13 CVE-2016-2533 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
Buffer overflow in the ImagingPcdDecode function in PcdDecode.c in Pillow before 3.1.1 and Python Imaging Library (PIL) 1.1.7 and earlier allows remote attackers to cause a denial of service (crash) via a crafted PhotoCD file.
network
low complexity
python-imaging-project python debian CWE-119
6.5
6.5
2016-04-13 CVE-2016-0775 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.
network
low complexity
python debian CWE-119
6.5
6.5
2016-04-13 CVE-2016-0740 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
Buffer overflow in the ImagingLibTiffDecode function in libImaging/TiffDecode.c in Pillow before 3.1.1 allows remote attackers to overwrite memory via a crafted TIFF file.
network
low complexity
python debian CWE-119
6.5
6.5