CVE-2026-42311

CVSS v4.0

8.6

High

Vector

AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions Pillow versions 10.3.0 through 12.1.x

Description Processing a malicious PSD file can lead to memory corruption, potentially resulting in a crash or arbitrary code execution. This occurs because bounds checks for tile extents in PSD image decoding and encoding used types susceptible to integer overflow. A PSD image with specifically crafted tile dimensions could cause values to wrap around, bypassing the checks and triggering an out-of-bounds write in the src/decode.c and src/encode.c files.

Recommendations Update to version 12.2.0.

Fix

Integer Overflow

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190CWE-787

Related Identifiers

BIT-PILLOW-2026-42311

CVE-2026-42311

ECHO-4895-DA6A-8B1F

GHSA-PWV6-VV43-88GR

OESA-2026-2428

OESA-2026-2429

Affected Products

Pillow

CVE-2026-42311

Weakness Enumeration

Related Identifiers

Affected Products

References · 22