Pillow through 10.1.0 allows PIL.ImageMath.eval Arbitrary Code Execution via the environment parameter, a different vulnerability than CVE-2022-22817 (which was about the expression parameter).
{ "ubuntu_priority": "medium", "availability": "No subscription required", "binaries": [ { "binary_name": "python-pil-doc", "binary_version": "7.0.0-4ubuntu0.8" }, { "binary_name": "python3-pil", "binary_version": "7.0.0-4ubuntu0.8" }, { "binary_name": "python3-pil-dbg", "binary_version": "7.0.0-4ubuntu0.8" }, { "binary_name": "python3-pil.imagetk", "binary_version": "7.0.0-4ubuntu0.8" }, { "binary_name": "python3-pil.imagetk-dbg", "binary_version": "7.0.0-4ubuntu0.8" } ] }
{ "ubuntu_priority": "medium", "availability": "No subscription required", "binaries": [ { "binary_name": "python-pil-doc", "binary_version": "9.0.1-1ubuntu0.2" }, { "binary_name": "python3-pil", "binary_version": "9.0.1-1ubuntu0.2" }, { "binary_name": "python3-pil-dbgsym", "binary_version": "9.0.1-1ubuntu0.2" }, { "binary_name": "python3-pil.imagetk", "binary_version": "9.0.1-1ubuntu0.2" }, { "binary_name": "python3-pil.imagetk-dbgsym", "binary_version": "9.0.1-1ubuntu0.2" } ] }
{ "ubuntu_priority": "medium", "availability": "No subscription required", "binaries": [ { "binary_name": "python-pil-doc", "binary_version": "10.2.0-1" }, { "binary_name": "python3-pil", "binary_version": "10.2.0-1" }, { "binary_name": "python3-pil-dbgsym", "binary_version": "10.2.0-1" }, { "binary_name": "python3-pil.imagetk", "binary_version": "10.2.0-1" }, { "binary_name": "python3-pil.imagetk-dbgsym", "binary_version": "10.2.0-1" } ] }