Bug 1789533 (CVE-2020-5312) - CVE-2020-5312 python-pillow: improperly restricted operations on memory buffer in libImaging/PcxDecode.c
Summary: CVE-2020-5312 python-pillow: improperly restricted operations on memory buffe...
Keywords:
Status: NEW
Alias: CVE-2020-5312
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
high
high
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1799353 1799354 1799355 1799356 1799357 1799359 1789541 1789542
Blocks: 1789544
TreeView+ depends on / blocked
 
Reported: 2020-01-09 18:50 UTC by Pedro Sampaio
Modified: 2020-02-10 19:10 UTC (History)
19 users (show)

Fixed In Version: python-pillow 6.2.2
Doc Type: If docs needed, set a value
Doc Text:
A flaw was discovered in python-pillow does where it does not properly restrict operations within the bounds of a memory buffer when decoding PCX images. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system.
Clone Of:
Environment:
Last Closed:


Attachments (Terms of Use)

Description Pedro Sampaio 2020-01-09 18:50:52 UTC
libImaging/PcxDecode.c in Pillow before 6.2.2 has an PCX P mode buffer overflow.

Upstream patch:

https://github.com/python-pillow/Pillow/commit/93b22b846e0269ee9594ff71a72bec02d2bea8fd

References:

https://pillow.readthedocs.io/en/stable/releasenotes/6.2.2.html

Comment 1 Pedro Sampaio 2020-01-09 19:04:37 UTC
Created python-pillow tracking bugs for this issue:

Affects: fedora-all [bug 1789541]


Created python3-pillow tracking bugs for this issue:

Affects: epel-7 [bug 1789542]

Comment 2 Jason Shepherd 2020-01-10 02:23:29 UTC
While Red Hat Quay includes the python-pillow it's not used, therefore this issue is rated moderate for Red Hat Quay.


Note You need to log in before you can comment on or make changes to this bug.