You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
In Pillow before 8.1.0, PcxDecode has a buffer over-read when decoding a crafted PCX file because the user-supplied stride value is trusted for buffer calculations.
Descreva a vulnerabilidade de segurança (se houver CVE, coloque como
referência)
CVE-2020-35653
In Pillow before 8.1.0, PcxDecode has a buffer over-read when decoding a crafted PCX file because the user-supplied stride value is trusted for buffer calculations.
References
https://nvd.nist.gov/vuln/detail/CVE-2020-35653
https://lists.fedoraproject.org/archives/list/[email protected]/message/6BYVI5G44MRIPERKYDQEL3S3YQCZTVHE/
https://lists.fedoraproject.org/archives/list/[email protected]/message/BF553AMNNNBW7SH4IM4MNE4M6GNZQ7YD/
https://pillow.readthedocs.io/en/stable/releasenotes/index.html
Classifique a prioridade de correção, de acordo com a severidade da
vulnerabilidade 30 dias
The text was updated successfully, but these errors were encountered: