Pillow Denial of service
Moderate severity
GitHub Reviewed
Published
Jun 8, 2021
to the GitHub Advisory Database
•
Updated Sep 4, 2023
Description
Published by the National Vulnerability Database
Jun 2, 2021
Reviewed
Jun 3, 2021
Published to the GitHub Advisory Database
Jun 8, 2021
Last updated
Sep 4, 2023
An issue was discovered in Pillow before 8.2.0.
PSDImagePlugin.PsdImageFile
lacked a sanity check on the number of input layers relative to the size of the data block. This could lead to a DoS onImage.open
prior toImage.load
.References