Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
pypi pillow Security Advisories
Loading...
Critical
Ecosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 48.5
Published: over 2 years ago
GSA_kwCzR0hTQS03NTM0LW1tNDUtYzc0ds0WKQ
Buffer Overflow in PillowEcosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 48.5
Published: over 2 years ago
Critical
Ecosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 48.5
Published: almost 2 years ago
GSA_kwCzR0hTQS1yN3JtLThqNmgtcjkzM84AAjLe
Buffer Copy without Checking Size of Input in PillowEcosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 48.5
Published: almost 2 years ago
High
Ecosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: over 2 years ago
GSA_kwCzR0hTQS05OHZ2LXB3NnItcTZxNM0VnA
Uncontrolled Resource Consumption in pillowEcosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: over 2 years ago
High
Ecosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: 6 months ago
GSA_kwCzR0hTQS04Z2hqLXA0dmotbXIzNc4AA250
Pillow Denial of Service vulnerabilityEcosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: 6 months ago
Moderate
Ecosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpncHYtNGg0Yy14aHcz
Uncontrolled Resource Consumption in pillowEcosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: about 3 years ago
High
Ecosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: over 1 year ago
GSA_kwCzR0hTQS1xNG1wLWp2aDItNzZmas4AAv2m
Pillow subject to DoS via SAMPLESPERPIXEL tagEcosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: over 1 year ago
High
Ecosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: over 1 year ago
GSA_kwCzR0hTQS1tMnZ2LTV2ajUtMmhtN84AAv2p
Pillow vulnerable to Data Amplification attack.Ecosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: over 1 year ago
High
Ecosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo3bWotNzQ4eC03cDc4
DOS attack in Pillow when processing specially crafted image filesEcosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: over 4 years ago
Moderate
Ecosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 33.2
Published: about 1 month ago
GSA_kwCzR0hTQS00NHdtLWYyNDQteGhwM84AA6j6
Pillow buffer overflow vulnerabilityEcosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 33.2
Published: about 1 month ago
Moderate
Ecosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 27.2
Published: almost 2 years ago
GSA_kwCzR0hTQS12OXBjLTltdnAteDg3Z84AAbp5
Pillow Buffer overflow in Jpeg2KEncode.cEcosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 27.2
Published: almost 2 years ago
High
Ecosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 7 months ago
GSA_kwCzR0hTQS01NnB3LW1wajQtZnh3d84AA2QC
Bundled libwebp in Pillow vulnerableEcosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: 7 months ago
Moderate
Ecosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1oNXJmLXZncXgtd2p2Ms4AAU_b
Pillow denial of service via PNG bombEcosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1qNmY3LWc0MjUtNGdteM4AAU-u
Pillow is vulnerable to Denial of Service (DOS) in the Jpeg2KImagePluginEcosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS14ODk1LTJ3cm0taHZwN84AAbcx
PIL and Pillow Vulnerable to Symlink Attack on TmpfilesEcosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
High
Ecosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS04bTl4LXB4d3EtajIzNs4AAelu
Pillow command injectionEcosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Moderate
Ecosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1jZm1yLTM4ZzktZjJoN84AAU-s
Pillow denial of service via Crafted Block SizeEcosystems: pypi
Packages: pillow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Statistics
Advisories: 18,400
Packages: 8,303
Repositories: 4
Ecosystems: 12
Packages: 8,303
Repositories: 4
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
tensorflow
432
tensorflow-cpu
387
tensorflow-gpu
384
django
80
apache-airflow
78
ansible
63
salt
50
apache-superset
49
Plone
45
plone
43
rdiffweb
42
Pillow
41
vyper
38
matrix-synapse
35
mlflow
31
opencv-contrib-python
30
opencv-python
30
Django
27
moin
23
langchain
18
PaddlePaddle
17
mercurial
17
cobbler
17
pillow
16
gradio
15
nova
15
paddlepaddle
15
cryptography
15
notebook
15
modoboa
14
pyftpdlib
14
keystone
14
pyload-ng
14
neutron
13
OctoPrint
12
vantage6
12
glance
11
urllib3
11
calibreweb
11
twisted
11
onionshare-cli
11
aiohttp
11
wagtail
10
Flask-AppBuilder
10
trytond
10
zope
9
opencv-contrib-python-headless
9
opencv-python-headless
9
Zope
9
ryu
9
waitress
9
kiwitcms
9
ethyca-fides
9
roundup
8
trac
8
numpy
8
nautobot
8
python-keystoneclient
8
label-studio
8
aubio
8
jupyter-server
7
swift
7
scrapy
7
matrix-sydent
7
pysaml2
7
ipython
7
pgadmin4
7
lief
7
pip
7
apache-airflow-providers-apache-hive
6
graphite-web
6
horizon
6
lxml
6
tuf
6
sentry
6
mindsdb
6
web2py
6
mailman
6
Zope2
6
inventree
6
lmdb
5
python-gnupg
5
feedparser
5
Jinja2
5
paramiko
5
whoogle-search
5
requests
5
Products.CMFPlone
5
ckan
5
bleach
5
cinder
5
pyspark
5
saleor
5
httpie
4
grpc
4
grpcio
4
oauthenticator
4
tornado
4
keylime
4
nvflare
4
PyPDF2
4
starlette
4
FreeTAKServer-UI
4
ansible-core
4
datasette
4
transformers
4
markdown2
4
reportlab
4
qutebrowser
4
nltk
4
yt-dlp
4
Pygments
4
jupyterhub
4
werkzeug
4
buildbot
4
Flask-Security-Too
4
omero-web
4
Werkzeug
4
esphome
4
GitPython
4
bottle
4
tripleo-heat-templates
4
Radicale
4
awsiotsdk
4
jwcrypto
4
pretix
4
aws-iot-device-sdk-v2
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
sosreport
3
bitlyshortener
3
localstack
3
indico
3
Moin
3
poetry
3
pywasm3
3
sickrage
3
onnx
3
gerapy
3
plone.supermodel
3
protobuf
3
plone.app.dexterity
3
plone.app.theming
3
plone.app.event
3
httplib2
3
apache-libcloud
3
ray
3
django-helpdesk
3
ecdsa
3
zenml
3
asyncssh
3
ajenti
3
barbican
3
pyarrow
3
python-jose
3
changedetection.io
3
fava
3
sanic
3
rsa
3
Products.PluggableAuthService
3
sqlparse
3
apache-iotdb
3
asyncua
3
wger
3
keyring
3
Mezzanine
3
jupyterlab
3
flask
3
dulwich
3
pycrypto
3
homeassistant
3
aim
3
indy-node
3
octavia
3
mistune
3
slixmpp
3
apache-airflow-providers-apache-spark
3
ujson
3
copyparty
3
streamlit
3
clearml
3
torchserve
3
docassemble.webapp
3
Weblate
3
pyyaml
3
SQLAlchemy
3
quokka
3
openvpn-monitor
3
Keystone
3
mayan-edms
3
pandasai
3
ansible-runner
3
mitmproxy
3
io.grpc:grpc-protobuf
3
zope2
2
djblets
2
ubi-reader
2
wagtail-2fa
2
Products.CMFCore
2
jinja2
2
untangle
2