CVE-2019-19911Integer Overflow or Wraparound in Pillow

CWE-190Integer Overflow or WraparoundCWE-400Uncontrolled Resource ConsumptionCWE-664Improper Control of a Resource Through its LifetimeCWE-789Memory Allocation with Excessive Size ValueCWE-770Allocation of Resources Without Limits or ThrottlingCWE-1284Improper Validation of Specified Quantity in InputCWE-123Write-what-where Condition20 documents10 sources
Severity
7.5HIGHNVD
EPSS
1.0%
top 23.39%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Python PillowCanonical Ubuntu LinuxDebian Linux+2 more
Timeline
PublishedJan 5
Latest updateFeb 14

Description

There is a DoS vulnerability in Pillow before 6.2.2 caused by FpxImagePlugin.py calling the range function on an unvalidated 32-bit integer if the number of bands is large. On Windows running 32-bit Python, this results in an OverflowError or MemoryError due to the 2 GB limit. However, on Linux running 64-bit Python this results in the process being terminated by the OOM killer.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages5 packages

NVDpython/pillow< 6.2.2
PyPIpython/pillow< 6.2.2
Debianpython/pillow< 7.0.0-1+3
Ubuntupython/pillow< 3.1.2-0ubuntu1.3+2
Palo Altopaloalto/pan-os

Also affects: Debian Linux 10.0, 9.0, Ubuntu Linux 14.04, 16.04, 18.04, 19.10, Fedora 30

🔴Vulnerability Details

5
OSV
Uncontrolled Resource Consumption in Pillow2020-04-01
GHSA
Uncontrolled Resource Consumption in Pillow2020-04-01
OSV
pillow vulnerabilities2020-02-06
OSV
CVE-2019-19911: There is a DoS vulnerability in Pillow before 62020-01-05
CVEList
CVE-2019-19911: There is a DoS vulnerability in Pillow before 62020-01-05

📋Vendor Advisories

4
Palo Alto
PAN-SA-2024-0001 Informational Bulletin: Impact of OSS CVEs in PAN-OS2024-02-14
Ubuntu
Pillow vulnerabilities2020-02-06
Red Hat
python-pillow: uncontrolled resource consumption in FpxImagePlugin.py2020-01-03
Debian
CVE-2019-19911: pillow - There is a DoS vulnerability in Pillow before 6.2.2 caused by FpxImagePlugin.py ...2019

📐Framework References

7
CWE
Uncontrolled Resource Consumption
CWE
Improper Control of a Resource Through its Lifetime
CWE
Memory Allocation with Excessive Size Value
CWE
Allocation of Resources Without Limits or Throttling
CWE
Integer Overflow or Wraparound

💬Community

3
Bugzilla
CVE-2019-19911 python-pillow: Out of memory issue in FpxImagePlugin.py [fedora-all]2020-02-06
Bugzilla
CVE-2019-19911 python3-pillow: python-pillow: Out of memory issue in FpxImagePlugin.py [epel-7]2020-02-06
Bugzilla
CVE-2019-19911 python-pillow: uncontrolled resource consumption in FpxImagePlugin.py2020-01-09
CVE-2019-19911 — Integer Overflow or Wraparound | cvebase