CVE-2016-9190 — Improper Access Control in Pillow

CWE-284 — Improper Access Control CWE-20 — Improper Input Validation CWE-787 — Out-of-bounds Write11 documents8 sources

Severity

7.8HIGHNVD

OSV5.0

EPSS

0.6%

top 31.50%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Python Pillow Debian Linux

Timeline

PublishedNov 4

Latest updateJul 12

Description

Pillow before 3.3.2 allows context-dependent attackers to execute arbitrary code by using the "crafted image file" approach, related to an "Insecure Sign Extension" issue affecting the ImagingNew in Storage.c component.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages4 packages

▶PyPIpython/pillow< 3.3.2

▶Debianpython/pillow< 3.4.2-1+3

▶Ubuntupython/pillow< 2.3.0-1ubuntu3.4+1

▶NVDpython/pillow3.3.1

Also affects: Debian Linux 8.0

Patches

Patch: github.com ↗Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

Arbitrary code using "crafted image file" approach affecting Pillow↗2018-07-12

▶

GHSA

Arbitrary code using "crafted image file" approach affecting Pillow↗2018-07-12

▶

OSV

pillow vulnerabilities↗2017-03-13

▶

CVEList

CVE-2016-9190: Pillow before 3↗2016-11-04

▶

OSV

CVE-2016-9190: Pillow before 3↗2016-11-04

▶

📋Vendor Advisories

Ubuntu

Pillow vulnerabilities↗2017-03-13

▶

Ubuntu

Python Imaging Library vulnerabilities↗2017-03-13

▶

Red Hat

python-pillow: Missing check for negative image dimensions in ImagingNew (Storage.c)↗2016-10-03

▶

Debian

CVE-2016-9190: pillow - Pillow before 3.3.2 allows context-dependent attackers to execute arbitrary code...↗2016

▶

💬Community

Bugzilla

CVE-2016-9190 python-pillow: Missing check for negative image dimensions in ImagingNew (Storage.c)↗2016-10-05

▶