Vulnerability Database
Blog
FAQ
Docs
PYSEC-2022-42980
See a problem?
Import Source
https://github.com/pypa/advisory-database/blob/main/vulns/pillow/PYSEC-2022-42980.yaml
JSON Data
https://api.test.osv.dev/v1/vulns/PYSEC-2022-42980
Aliases
BIT-pillow-2022-45199
CVE-2022-45199
GHSA-q4mp-jvh2-76fj
Published
2022-11-14T07:15:00Z
Modified
2023-12-06T00:47:40.023829Z
Summary
[none]
Details
Pillow before 9.3.0 allows denial of service via SAMPLESPERPIXEL.
References
https://github.com/python-pillow/Pillow/pull/6700
https://bugs.gentoo.org/878769
https://github.com/python-pillow/Pillow/releases/tag/9.3.0
https://github.com/python-pillow/Pillow/commit/2444cddab2f83f28687c7c20871574acbb6dbcf3
Affected packages
PyPI
/
pillow
Package
Name
pillow
View open source insights on deps.dev
Purl
pkg:pypi/pillow
Affected ranges
Type
GIT
Repo
https://github.com/python-pillow/Pillow
Events
Introduced
0
Unknown introduced commit / All previous commits are affected
Fixed
2444cddab2f83f28687c7c20871574acbb6dbcf3
Type
ECOSYSTEM
Events
Introduced
9.2.0
Fixed
9.3.0
Affected versions
9.*
9.2.0
PYSEC-2022-42980 - OSV