In libImaging/PcxDecode.c in Pillow before 6.2.3 and 7.x before 7.0.1, an out-of-bounds read can occur when reading PCX files where state->shuffle is instructed to read beyond state->buffer. Pull Request: https://github.com/python-pillow/Pillow/pull/4538 Upstream Advisory: https://pillow.readthedocs.io/en/stable/releasenotes/7.1.0.html Upstream Advisory: https://pillow.readthedocs.io/en/stable/releasenotes/6.2.3.html
Created python-pillow tracking bugs for this issue: Affects: fedora-31 [bug 1852833] Affects: fedora-32 [bug 1852835]
Upstream Commit: https://github.com/python-pillow/Pillow/commit/f260acc30a2c14800db4feacad80924488ec88bf
This issue has been addressed in the following products: Red Hat Quay 3 Via RHSA-2021:0420 https://access.redhat.com/errata/RHSA-2021:0420
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2020-10378