Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is decompressed.
References
Configurations
History
No history.
Information
Published : 2015-01-16 16:59
Updated : 2025-04-12 10:46
NVD link : CVE-2014-9601
Mitre link : CVE-2014-9601
CVE.ORG link : CVE-2014-9601
JSON object : View
Products Affected
python
- pillow
oracle
- solaris
fedoraproject
- fedora
opensuse
- opensuse
CWE
CWE-20
Improper Input Validation