CVE-2020-10994
pypi/Pillow
Out-of-bounds Read
In libImaging/Jpeg2KDecode.c in Pillow, there are multiple out-of-bounds reads via a crafted JP2 file.
libImaging/Jpeg2KDecode.c
All versions before 7.0.0
Upgrade to version 7.0.0 or above.
2020-07-03