Safety vulnerability ID: 25932
The information on this page was manually curated by our Cybersecurity Intelligence Team.
Pillow versions 2.3.2 and 2.5.2 include a fix for CVE-2014-3589: PIL/IcnsImagePlugin.py in Python Imaging Library (PIL) and Pillow before 2.3.2 and 2.5.x before 2.5.2 allows remote attackers to cause a denial of service via a crafted block size.
https://github.com/python-pillow/Pillow/commit/205e056f8f9b06ed7b925cf8aa0874bc4aaf8a7d
Latest version: 10.3.0
Python Imaging Library (Fork)
------------------
- Fixed CVE-2014-3589, a DOS in the IcnsImagePlugin (backport)
[Andrew Drake]
Scan your Python project for dependency vulnerabilities in two minutes
Scan your application