Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
pypi Pillow Security Advisories
Loading...
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 40.1
Published: 3 months ago
GSA_kwCzR0hTQS0zZjYzLWhmcDgtNTJqcc4AA4lV
Arbitrary Code Execution in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 40.1
Published: 3 months ago
High
Ecosystems: nuget, cargo, pypi, go, npm
Packages: magick.net-q8-x64, magick.net-q8-openmp-x64, magick.net-q8-anycpu, magick.net-q16-x64, magick.net-q16-hdri-anycpu, magick.net-q16-anycpu, webp, Pillow, github.com/chai2010/webp, SkiaSharp, electron, libwebp-sys, libwebp-sys2
Source: GitHub Advisory Database
Blast Radius: 130.8
Published: 8 months ago
GSA_kwCzR0hTQS1qN2hwLWg4angtNXBwcs4AA10j
libwebp: OOB write in BuildHuffmanTableEcosystems: nuget, cargo, pypi, go, npm
Packages: magick.net-q8-x64, magick.net-q8-openmp-x64, magick.net-q8-anycpu, magick.net-q16-x64, magick.net-q16-hdri-anycpu, magick.net-q16-anycpu, webp, Pillow, github.com/chai2010/webp, SkiaSharp, electron, libwebp-sys, libwebp-sys2
Source: GitHub Advisory Database
Blast Radius: 130.8
Published: 8 months ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
GSA_kwCzR0hTQS1ocjhnLWY2cjYtbXIyMs4AArN6
Buffer over-flow in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 2 years ago
Low
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
GSA_kwCzR0hTQS00Zng5LXZjODgtcTJ4Y80yIw
Infinite loop in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 2 years ago
Critical
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 45.0
Published: about 2 years ago
GSA_kwCzR0hTQS05ajU5LTc1cWotNzk1d80yIg
Path traversal in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 45.0
Published: about 2 years ago
Moderate
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 32.2
Published: over 2 years ago
GSA_kwCzR0hTQS1wdzNjLWg3d3AtY3ZoeM0hfQ
Improper Initialization in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 32.2
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 32.2
Published: over 2 years ago
GSA_kwCzR0hTQS14cmN2LWY5Z20tdjQyY80hew
Out-of-bounds Read in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 32.2
Published: over 2 years ago
Critical
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 48.5
Published: over 2 years ago
GSA_kwCzR0hTQS04dmoyLXZ4eDMtNjY3d80hfA
Arbitrary expression injection in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 48.5
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 48.5
Published: over 2 years ago
GSA_kwCzR0hTQS1wNDloLWhqdm0tamczaM0W2w
PCX P mode buffer overflow in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 48.5
Published: over 2 years ago
Moderate
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 27.2
Published: over 2 years ago
GSA_kwCzR0hTQS0zeHY4LTNqNTQtaGdycM0W2g
Out-of-bounds read in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 27.2
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 43.6
Published: over 2 years ago
GSA_kwCzR0hTQS12Y3FnLTNwMjkteHc3M80W2Q
Integer overflow in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 43.6
Published: over 2 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE1aHEtZnA3Ni1xbXJj
Uncontrolled Resource Consumption in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: almost 3 years ago
Critical
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 45.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ3djctM3Y0NS1oZzI5
Out-of-bounds ReadEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 45.0
Published: almost 3 years ago
Moderate
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 27.2
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhqZngtOHA2Yy1nN2d4
Insufficient Verification of Data Authenticity in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 27.2
Published: almost 3 years ago
Moderate
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 27.2
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc2cmotcnY3ai14d3A0
Pillow Denial of serviceEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 27.2
Published: almost 3 years ago
Critical
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 45.0
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc3Z2MtdjJ4di1ydnZo
Out-of-bounds Read in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 45.0
Published: almost 3 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: almost 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdyN20tNWgyNy0yOWhw
Potential infinite loop in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: almost 3 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW12ZzkteGZmci1wNzc0
Out of bounds read in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: about 3 years ago
Moderate
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 32.2
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTloeDItaGdxMi0yZzRm
Regular Expression Denial of Service (ReDoS) in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 32.2
Published: about 3 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTh4anEtOGZjZy1nNWh3
Out-of-bounds Write in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: about 3 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA0M3ctZzNjNS1nNW1x
Out of bounds read in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: about 3 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 43.6
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU3aDMtOXJnci1jMjRt
Out of bounds write in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 43.6
Published: about 3 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 35.1
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY1ZzgtNXFxNy05Mzh3
Pillow Out-of-bounds ReadEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 35.1
Published: about 3 years ago
Moderate
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 26.7
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhmNjQteDRncS1wOTlo
Pillow Out-of-bounds ReadEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 26.7
Published: about 3 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 43.6
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZxY2otd3JmMi03djcz
Pillow Out-of-bounds WriteEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 43.6
Published: about 3 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTN3dmctbWo2Zy1tOWN2
Pillow Uncontrolled Resource ConsumptionEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: about 3 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWY0dzgtY3Y2cC14NnI1
Pillow Denial of Service by Uncontrolled Resource ConsumptionEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: about 3 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk1cTMtOGdyOS1nbTh3
Pillow Denial of Service by Uncontrolled Resource ConsumptionEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: about 3 years ago
Moderate
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 27.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNxaGcteGpoaC1wOGhm
Out-of-bounds reads in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 27.2
Published: over 3 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 38.6
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg4NDMtbTdtdy1teHFt
Buffer overflow in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 38.6
Published: over 3 years ago
Moderate
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 27.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZqNDIteHEzci1ocjNy
Out-of-bounds reads in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 27.2
Published: over 3 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 40.1
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQzZnEtdzhxcS12ODho
Out-of-bounds read in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 40.1
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXI4NTQtOTZncS1yZmcz
Pillow Temporary file name leakageEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 4 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVnbTMtcHg2NC1ydzcy
Uncontrolled Resource Consumption in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 37.1
Published: about 4 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 35.1
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhqNjktYzc2di04Nndy
Out-of-bounds Read in PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 35.1
Published: about 4 years ago
Critical
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 48.5
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWh2cjgtNDY2cC03NXJo
Pillow Integer overflow in ImagingResampleHorizontalEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 48.5
Published: almost 6 years ago
Moderate
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 32.2
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTh4anYtdjl4cS1tNWg5
Pillow Buffer overflow in ImagingFliDecodeEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 32.2
Published: almost 6 years ago
Moderate
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 32.2
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNjNWMtNzIzNS05OTRq
Pillow buffer overflow in ImagingPcdDecodeEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 32.2
Published: almost 6 years ago
Moderate
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 27.2
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJ3cjMtYzJxOC1nbTU2
Pillow Integer overflow in Map.cEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 27.2
Published: almost 6 years ago
Moderate
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 32.2
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhnZ3gtM2g3Mi00OXd3
Pillow Buffer overflow in ImagingLibTiffDecodeEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 32.2
Published: almost 6 years ago
High
Ecosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 38.6
Published: almost 6 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc0dmctcmY2My1mM2oz
Arbitrary code using "crafted image file" approach affecting PillowEcosystems: pypi
Packages: Pillow
Source: GitHub Advisory Database
Blast Radius: 38.6
Published: almost 6 years ago
Statistics
Advisories: 17,986
Packages: 8,213
Repositories: 3
Ecosystems: 12
Packages: 8,213
Repositories: 3
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
tensorflow
432
tensorflow-cpu
387
tensorflow-gpu
384
django
80
apache-airflow
78
ansible
63
apache-superset
48
rdiffweb
42
plone
42
Pillow
41
salt
38
Plone
36
matrix-synapse
35
vyper
32
opencv-contrib-python
30
opencv-python
30
mlflow
30
Django
21
langchain
18
PaddlePaddle
17
cobbler
17
pillow
15
cryptography
15
paddlepaddle
15
notebook
15
modoboa
14
gradio
14
pyload-ng
14
pyftpdlib
13
nova
13
OctoPrint
12
keystone
12
neutron
12
vantage6
12
calibreweb
11
twisted
11
onionshare-cli
11
urllib3
11
glance
11
Flask-AppBuilder
10
aiohttp
10
opencv-contrib-python-headless
9
ethyca-fides
9
moin
9
kiwitcms
9
Zope
9
opencv-python-headless
9
zope
9
wagtail
9
waitress
9
label-studio
8
numpy
8
aubio
8
lief
7
pysaml2
7
scrapy
7
nautobot
7
jupyter-server
7
python-keystoneclient
7
matrix-sydent
7
swift
7
pip
7
pgadmin4
6
mailman
6
lxml
6
tuf
6
web2py
6
mindsdb
6
apache-airflow-providers-apache-hive
6
Zope2
6
ipython
6
sentry
6
inventree
6
graphite-web
6
trytond
5
requests
5
feedparser
5
saleor
5
bleach
5
lmdb
5
python-gnupg
5
paramiko
5
whoogle-search
5
Products.CMFPlone
5
horizon
5
ckan
5
roundup
5
pyspark
5
jupyterhub
4
yt-dlp
4
datasette
4
ansible-core
4
reportlab
4
starlette
4
keylime
4
grpcio
4
bottle
4
grpc
4
markdown2
4
Pygments
4
werkzeug
4
awsiotsdk
4
aws-iot-device-sdk-v2
4
FreeTAKServer-UI
4
transformers
4
qutebrowser
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
Flask-Security-Too
4
omero-web
4
oauthenticator
4
pretix
4
PyPDF2
4
esphome
4
nvflare
4
httpie
4
nltk
4
buildbot
4
GitPython
4
Jinja2
4
rsa
3
copyparty
3
Werkzeug
3
localstack
3
cinder
3
apache-iotdb
3
flask
3
sanic
3
fava
3
pyarrow
3
poetry
3
mistune
3
ecdsa
3
asyncssh
3
Products.PluggableAuthService
3
jupyterlab
3
tornado
3
ansible-runner
3
ray
3
aim
3
indy-node
3
openvpn-monitor
3
barbican
3
ujson
3
torchserve
3
jwcrypto
3
ryu
3
mitmproxy
3
bitlyshortener
3
indico
3
apache-airflow-providers-apache-spark
3
plone.app.event
3
plone.app.theming
3
plone.app.dexterity
3
plone.supermodel
3
mayan-edms
3
gerapy
3
pyyaml
3
pandasai
3
tripleo-heat-templates
3
protobuf
3
django-helpdesk
3
apache-libcloud
3
onnx
3
zenml
3
sickrage
3
sqlparse
3
slixmpp
3
asyncua
3
clearml
3
io.grpc:grpc-protobuf
3
docassemble.webapp
3
wger
3
keyring
3
streamlit
3
quokka
3
pywasm3
3
Keystone
3
Weblate
3
wasm3
2
SQLAlchemy
2
flaskcode
2
Google.Protobuf
2
google/protobuf
2
github.com/protocolbuffers/protobuf
2
ubi-reader
2
pyopenssl
2
org.apache.spark:spark-core
2
cabot
2
ajenti
2
pymongo
2
aws-encryption-sdk-cli
2
httplib2
2
starkbank-ecdsa
2
Moin
2
apache-airflow-providers-apache-sqoop
2
certifi
2
mobsf
2
dbt-core
2
typed-ast
2
python-cjson
2