CVE-2020-35653
pypi/Pillow
Out-of-bounds Read
In Pillow, PcxDecode
has a buffer over-read when decoding a crafted PCX file because the user-supplied stride value is trusted for buffer calculations.
All versions before 8.1.0
Upgrade to version 8.1.0 or above.
2021-01-13
source |