CVE-2016-3076: Improper Restriction of Operations within the Bounds of a Memory Buffer
(updated )
Heap-based buffer overflow in the j2k_encode_entry
function in Pillow allows remote attackers to cause a denial of service (memory corruption) via a crafted Jpeg2000 file.
References
Detect and mitigate CVE-2016-3076 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →