PT-2016-3211 · Pillow · Pillow

Published

2016-02-04

Updated

2020-05-06

CVE-2016-4009

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Pillow versions prior to 3.1.1

Description The issue is caused by an integer overflow in the ImagingResampleHorizontal function in libImaging/Resample.c, which can be exploited by remote attackers via negative values of the new size, triggering a heap-based buffer overflow. This can potentially impact the confidentiality, integrity, and availability of data.

Recommendations For Pillow versions prior to 3.1.1, update to version 3.1.1 or later to resolve the issue. As a temporary workaround, consider restricting the use of the ImagingResampleHorizontal function to minimize the risk of exploitation. Avoid using negative values for the new size in the affected function until the issue is resolved.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

BDU:2017-02504

CVE-2016-4009

GHSA-HVR8-466P-75RH

PYSEC-2016-7

SUSE-SU-2019:2334-1

SUSE-SU-2020:1194-1

Affected Products

Pillow

PT-2016-3211 · Pillow · Pillow

CVE-2016-4009

Weakness Enumeration

Related Identifiers

Affected Products

References · 26