CVE-2020-10379

Buffer Overflow in pypi/Pillow

Identifiers

CVE-2020-10379

Package Slug

pypi/Pillow

Vulnerability

Buffer Overflow

Description

In Pillow, there are two Buffer Overflows in libImaging/TiffDecode.c.

Affected Versions

All versions before 6.2.3, version 7.0.0

Solution

Upgrade to version 7.1.0 or above.

Last Modified

2020-07-03

source