PT-2026-58104 · Pypi · Pillow

CVE-2026-54058

·

Published

2026-07-14

·

Updated

2026-07-15

CVSS v4.0

8.3

High

VectorAV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N
Name of the Vulnerable Software and Affected Versions Pillow versions prior to 12.3.0
Description When loading an uncompressed McIdas AREA image from a filename using the mmap raw codec path, attacker-controlled header words can set a row stride smaller than the natural row width. This leads to out-of-bounds reads when accessing pixels via functions such as Image.tobytes(), getpixel(), convert(), or save(), which may result in the disclosure of adjacent process memory or a system fault.
Recommendations Update to version 12.3.0.

Exploit

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-54058
GHSA-62P4-GMF7-7G93
OPENSUSE-SU-2026:11283-1

Affected Products

Pillow