Description
Pillow is a Python imaging library. Prior to version 12.2.0, if a font advances for each glyph by an exceeding large amount, when Pillow keeps track of the current position, it may lead to an integer overflow. This issue has been patched in version 12.2.0.
Published: 2026-05-09
Score: 5.1 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

This vulnerability is an integer overflow that occurs when Pillow processes font files whose glyph advance values exceed large limits. The overflow arises when Pillow tracks the current position while rendering each glyph, potentially causing memory corruption, application crashes, or denial‑of‑service conditions. The issue is classified as CWE-190, an integer overflow weakness, and is mitigated in Pillow version 12.2.0 and later.

Affected Systems

The affected product is the Python Pillow imaging library. All Pillow releases prior to 12.2.0 are vulnerable, including the 12.1.x series and earlier. Users relying on these versions should identify exactly which Pillow package they run and ensure it is updated when possible.

Risk and Exploitability

The CVSS score of 5.1 indicates a moderate severity. No EPSS score is available, and the vulnerability is not listed in the CISA KEV catalog, suggesting no widely used exploits have been reported. The likely attack vector is local or remote code that supplies malicious font files to an application using Pillow. Precise exploitation circumstances are not documented, but an attacker could potentially induce application instability or memory corruption by providing crafted font data.

Generated by OpenCVE AI on May 9, 2026 at 06:22 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Pillow to version 12.2.0 or later
  • Validate or sanitize font files to ensure glyph advance values fall within acceptable limits before processing
  • Limit processing of fonts to trusted sources or reject font uploads with unusually large advance metrics

Generated by OpenCVE AI on May 9, 2026 at 06:22 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-wjx4-4jcj-g98j Pillow has an integer overflow when processing fonts
History

Sat, 09 May 2026 06:45:00 +0000

Type Values Removed Values Added
First Time appeared Python-pillow
Python-pillow pillow
Vendors & Products Python-pillow
Python-pillow pillow

Sat, 09 May 2026 05:30:00 +0000

Type Values Removed Values Added
Description Pillow is a Python imaging library. Prior to version 12.2.0, if a font advances for each glyph by an exceeding large amount, when Pillow keeps track of the current position, it may lead to an integer overflow. This issue has been patched in version 12.2.0.
Title Pillow: Integer overflow when processing fonts
Weaknesses CWE-190
References
Metrics cvssV4_0

{'score': 5.1, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N'}

Subscriptions

Python-pillow Pillow
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-05-09T04:09:01.631Z

Reserved: 2026-04-26T12:37:18.169Z

Link: CVE-2026-42308

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-05-09T06:16:09.793

Modified: 2026-05-09T06:16:09.793

Link: CVE-2026-42308

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-09T06:30:25Z

Weaknesses