libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow.
Advisories
Source ID Title
Debian DLA Debian DLA DLA-2057-1 pillow security update
Debian DSA Debian DSA DSA-4631-1 pillow security update
EUVD EUVD EUVD-2020-0137 libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow.
Github GHSA Github GHSA GHSA-hj69-c76v-86wr Out-of-bounds Read in Pillow
Ubuntu USN Ubuntu USN USN-4272-1 Pillow vulnerabilities
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-04T08:22:09.137Z

Reserved: 2020-01-03T00:00:00

Link: CVE-2020-5313

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-01-03T01:15:11.320

Modified: 2024-11-21T05:33:53.620

Link: CVE-2020-5313

cve-icon Redhat

Severity : Moderate

Publid Date: 2020-01-03T00:00:00Z

Links: CVE-2020-5313 - Bugzilla

cve-icon OpenCVE Enrichment

No data.