PT-2019-20130 · Python Imaging Library · Pillow
Published
2019-10-04
·
Updated
2019-10-04
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions
Pillow versions prior to 6.2.0
Description
An issue was discovered in the library when reading specially crafted invalid image files. This can cause the library to either allocate very large amounts of memory or take an extremely long period of time to process the image.
Recommendations
For versions prior to 6.2.0, update to version 6.2.0 or later to resolve the issue.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Pillow