Ubuntu Security Update USN-6618-1: Pillow vulnerabilities

Thread starter LinuxBot
Start date Jan 30, 2024

LinuxBot

Member

Jan 30, 2024

It was discovered that Pillow incorrectly handled certain long text arguments. An attacker could possibly use this issue to cause Pillow to consume resources, leading to a denial of service. This issue only affected Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. (CVE-2023-44271) Duarte Santos discovered that Pillow incorrectly handled the environment parameter to PIL.ImageMath.eval. An attacker could possibly use this issue to execute arbitrary code. (CVE-2023-50447)

Continue reading...

You must log in or register to reply here.

Facebook X (Twitter) Reddit Pinterest Tumblr WhatsApp Email Link

Members online

Total: 610 (members: 4, guests: 606)

Latest posts

V
How to get started with linux on a M1 Pro mac.
- Latest: VarunSethi
- Today at 5:03 AM
Getting Started
Z
Bluetooth will not turn on on my laptop
- Latest: ZennMystic
- Today at 3:18 AM
Debian and derivatives
B
No internet while connected to Hotspot?
- Latest: bigjoncoop
- Today at 1:31 AM
Kali Linux
there is a slight flicker Garuda linux
- Latest: AlphaObeisance
- Today at 1:30 AM
Arch and derivatives
ffmpeg not playing sound correctly
- Latest: truckerDave
- Today at 1:18 AM
Linux Audio / Video

Top