Heap-based buffer overflow in the j2kencodeentry function in Pillow 2.5.0 through 3.1.1 allows remote attackers to cause a denial of service (memory corruption) via a crafted Jpeg2000 file.
{ "availability": "No subscription required", "ubuntu_priority": "low", "binaries": [ { "python3-pil-dbg": "3.1.2-0ubuntu1", "python-pil-dbg": "3.1.2-0ubuntu1", "python-pil-doc": "3.1.2-0ubuntu1", "python3-pil.imagetk": "3.1.2-0ubuntu1", "python3-pil.imagetk-dbg": "3.1.2-0ubuntu1", "python-pil.imagetk": "3.1.2-0ubuntu1", "python-pil.imagetk-dbg": "3.1.2-0ubuntu1", "python3-pil": "3.1.2-0ubuntu1", "python-imaging": "3.1.2-0ubuntu1", "python-pil": "3.1.2-0ubuntu1" } ] }