← back
CVE-2020-5313

CVE-2020-5313

EPSS 2.8%
libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/python-pillow/Pillow/commit/a09acd0decd8a87ccce939d5ff65dab59e7d365bhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MMU3WT2X64GS5WHDPKKC2WZA7UIIQ3A/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3DUMIBUYGJRAVJCTFUWBRLVQKOUTVX5P/https://pillow.readthedocs.io/en/stable/releasenotes/6.2.2.htmlhttps://usn.ubuntu.com/4272-1/https://www.debian.org/security/2020/dsa-4631