CVE-2022-30595

Name of the Vulnerable Software and Affected Versions Pillow version 9.1.0

Description The issue is related to a heap buffer overflow in the processing of invalid TGA image files. This can be exploited by a remote attacker to impact the confidentiality, integrity, and availability of protected information. The vulnerability occurs when reading a TGA file with RLE packets that cross scan lines, causing Pillow to read past the end of the first line without adjusting the length of the remaining file data. Additionally, opening an image with a zero or negative height can bypass a decompression bomb check, now raising a SyntaxError and a PIL.UnidentifiedImageError.

Recommendations For Pillow version 9.1.0, consider updating to a newer version that addresses the heap buffer overflow issue in the libImaging/TgaRleDecode.c component. As a temporary workaround, restrict the use of the libImaging/TgaRleDecode.c component when processing TGA image files until a patch is available. Avoid using the TgaRleDecode function to decode TGA images with RLE packets that cross scan lines.