CVE-2020-35653

Related Files

Red Hat Security Advisory 2021-4149-03

Posted Nov 10, 2021

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-4149-03 - The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities. Issues addressed include buffer over-read, buffer overflow, denial of service, and out of bounds read vulnerabilities.

tags | advisory, denial of service, overflow, vulnerability, python

systems | linux, redhat

advisories | CVE-2020-35653, CVE-2020-35655, CVE-2021-25287, CVE-2021-25288, CVE-2021-25290, CVE-2021-25292, CVE-2021-25293, CVE-2021-27921, CVE-2021-27922, CVE-2021-27923, CVE-2021-28675, CVE-2021-28676, CVE-2021-28677, CVE-2021-28678, CVE-2021-34552

MD5 | f9aa161b895ce30b107ea4f4e2b59cf8

Download | Favorite | View

Red Hat Security Advisory 2021-3917-01

Posted Oct 19, 2021

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2021-3917-01 - Quay 3.6.0 release. Issues addressed include buffer over-read, buffer overflow, denial of service, out of bounds read, and spoofing vulnerabilities.

tags | advisory, denial of service, overflow, spoof, vulnerability

systems | linux, redhat

advisories | CVE-2017-16137, CVE-2017-16138, CVE-2018-1107, CVE-2018-1109, CVE-2018-16492, CVE-2018-21270, CVE-2018-3721, CVE-2018-3728, CVE-2018-3774, CVE-2019-1010266, CVE-2019-20920, CVE-2019-20922, CVE-2020-15366, CVE-2020-25648, CVE-2020-26237, CVE-2020-26291, CVE-2020-35653, CVE-2020-35654, CVE-2020-7608, CVE-2020-8203, CVE-2021-22922, CVE-2021-22923, CVE-2021-22924, CVE-2021-23364, CVE-2021-23368, CVE-2021-23382, CVE-2021-25289

MD5 | 3ff5862607840258ebc66493e88f525a

Download | Favorite | View

Ubuntu Security Notice USN-4697-2

Posted Jan 20, 2021

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4697-2 - USN-4697-1 fixed several vulnerabilities in Pillow. This update provides the corresponding update for Ubuntu 14.04 ESM. It was discovered that Pillow incorrectly handled certain PCX image files. If a user or automated system were tricked into opening a specially-crafted PCX file, a remote attacker could possibly cause Pillow to crash, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, remote, denial of service, vulnerability

systems | linux, ubuntu

advisories | CVE-2020-10177, CVE-2020-35653

MD5 | 710757898267e7364668015c59fe295c

Download | Favorite | View

Ubuntu Security Notice USN-4697-1

Posted Jan 19, 2021

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4697-1 - It was discovered that Pillow incorrectly handled certain PCX image files. If a user or automated system were tricked into opening a specially-crafted PCX file, a remote attacker could possibly cause Pillow to crash, resulting in a denial of service. It was discovered that Pillow incorrectly handled certain Tiff image files. If a user or automated system were tricked into opening a specially-crafted Tiff file, a remote attacker could cause Pillow to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 20.04 LTS and Ubuntu 20.10. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary

systems | linux, ubuntu

advisories | CVE-2020-35653, CVE-2020-35654, CVE-2020-35655

MD5 | 33d0f53f2fe15d0bbe0fe6f3b813716f

Download | Favorite | View

Gentoo Linux Security Advisory 202101-08

Posted Jan 11, 2021

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202101-8 - Multiple vulnerabilities have been found in Pillow, the worst of which could result in a Denial of Service condition. Versions less than 8.1.0 are affected.

tags | advisory, denial of service, vulnerability

systems | linux, gentoo

advisories | CVE-2020-35653, CVE-2020-35654, CVE-2020-35655

MD5 | 10a03ba321505f8f440a2d98f3727dc4

Download | Favorite | View