python-pillow vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the python-pillow package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • M
Out-of-bounds Read

<0:2.0.0-23.gitd1c6db8.amzn2.0.13
  • M
Resource Exhaustion

<0:2.0.0-23.gitd1c6db8.amzn2.0.12
  • M
Buffer Overflow

<0:2.0.0-23.gitd1c6db8.amzn2.0.11
  • H
Arbitrary Command Injection

<0:2.0.0-23.gitd1c6db8.amzn2.0.10
  • M
Integer Overflow or Wraparound

<0:2.0.0-23.gitd1c6db8.amzn2.0.9
  • H
OS Command Injection

<0:2.0.0-23.gitd1c6db8.amzn2.0.8
  • H
Information Exposure

<0:2.0.0-23.gitd1c6db8.amzn2.0.8
  • H
Insecure Temporary File

<0:2.0.0-23.gitd1c6db8.amzn2.0.8
  • H
Resource Exhaustion

<0:2.0.0-23.gitd1c6db8.amzn2.0.7
  • M
Improper Input Validation

<0:2.0.0-23.gitd1c6db8.amzn2.0.6
  • M
Buffer Overflow

<0:2.0.0-23.gitd1c6db8.amzn2.0.5
  • H
Out-of-Bounds

<0:2.0.0-23.gitd1c6db8.amzn2.0.4
  • H
Improper Input Validation

<0:2.0.0-23.gitd1c6db8.amzn2.0.4
  • H
Improper Input Validation

<0:2.0.0-23.gitd1c6db8.amzn2.0.4
  • H
Allocation of Resources Without Limits or Throttling

<0:2.0.0-23.gitd1c6db8.amzn2.0.4
  • H
Improper Input Validation

<0:2.0.0-23.gitd1c6db8.amzn2.0.4
  • H
Improper Input Validation

<0:2.0.0-23.gitd1c6db8.amzn2.0.4
  • H
Improper Input Validation

<0:2.0.0-23.gitd1c6db8.amzn2.0.1
  • H
Arbitrary Command Injection

<0:2.0.0-23.gitd1c6db8.amzn2.0.1
  • H
Out-of-bounds Read

<0:2.0.0-23.gitd1c6db8.amzn2.0.1
  • H
Improper Initialization

<0:2.0.0-23.gitd1c6db8.amzn2.0.1
  • M
Out-of-bounds Read

<0:2.0.0-21.gitd1c6db8.amzn2.0.1
  • H
Allocation of Resources Without Limits or Throttling

<0:2.0.0-20.gitd1c6db8.amzn2.0.1
  • H
Buffer Overflow

<0:2.0.0-20.gitd1c6db8.amzn2.0.1