CVE-2022-45198

Improper Handling of Highly Compressed Data (Data Amplification) in pypi/Pillow

Identifiers

CVE-2022-45198

Package Slug

pypi/Pillow

Vulnerability

Improper Handling of Highly Compressed Data (Data Amplification)

Description

Pillow before 9.2.0 performs Improper Handling of Highly Compressed GIF Data (Data Amplification).

Affected Versions

All versions before 9.2.0

Solution

Upgrade to version 9.2.0 or above.

Last Modified

2022-11-18

source