Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.
{ "vanir_signatures": [ { "id": "CVE-2016-0775-83782be4", "digest": { "length": 3294.0, "function_hash": "142399850973351246136302585659669407188" }, "signature_version": "v1", "deprecated": false, "target": { "file": "libImaging/FliDecode.c", "function": "ImagingFliDecode" }, "signature_type": "Function", "source": "https://github.com/python-pillow/pillow/commit/893a40850c2d5da41537958e40569c029a6e127b" }, { "id": "CVE-2016-0775-cf487a56", "digest": { "line_hashes": [ "90415542530029145092862271186996895067", "202176769066957516811457500139573314217", "82190935524501381203610935653987214236", "164613247097927772616828656383705059358" ], "threshold": 0.9 }, "signature_version": "v1", "deprecated": false, "target": { "file": "libImaging/FliDecode.c" }, "signature_type": "Line", "source": "https://github.com/python-pillow/pillow/commit/893a40850c2d5da41537958e40569c029a6e127b" } ] }