CVE-2022-22816 :: Enginsight Vulnerability Database

Severity

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Atk. Vector

NETWORK

Atk. Complexity

LOW

Priv. Required

NONE

Base Score

CVSS 3.x

EPSS Score

Percentile: 71%

Vendor	Product	Version
python	pillow	𝑥 < 9.0.0
debian	debian_linux	9.0
debian	debian_linux	10.0
debian	debian_linux	11.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

pillow

bullseye (security)	8.1.2+dfsg-0.3+deb11u2 fixed
bullseye	8.1.2+dfsg-0.3+deb11u2 fixed
bookworm	9.4.0-1.1+deb12u1 fixed
bookworm (security)	9.4.0-1.1+deb12u1 fixed
sid	10.4.0-1 fixed
trixie	10.4.0-1 fixed

Ubuntu Releases

Ubuntu Product

Codename

pillow

noble	Fixed 9.0.0-1 released
mantic	Fixed 9.0.0-1 released
lunar	Fixed 9.0.0-1 released
kinetic	Fixed 9.0.0-1 released
jammy	Fixed 9.0.0-1 released
impish	Fixed 8.1.2+dfsg-0.3ubuntu0.1 released
hirsute	Fixed 8.1.2-1ubuntu0.2 released
focal	Fixed 7.0.0-4ubuntu0.5 released
bionic	Fixed 5.1.0-1ubuntu0.7 released
xenial	Fixed 3.1.2-0ubuntu1.6+esm1 released
trusty	Fixed 2.3.0-1ubuntu3.4+esm3 released

pillow-python2

noble	dne
mantic	dne
lunar	dne
kinetic	dne
jammy	dne
impish	dne
hirsute	dne
focal	needs-triage
bionic	dne
xenial	dne
trusty	dne

python-imaging

noble	dne
mantic	dne
lunar	dne
kinetic	dne
jammy	dne
impish	dne
hirsute	dne
focal	dne
bionic	dne
xenial	dne
trusty	dne

Common Weakness Enumeration

CWE-125 - Out-of-bounds Read
The software reads data past the end, or before the beginning, of the intended buffer.

References

https://github.com/python-pillow/Pillow/blob/c5d9223a8b5e9295d15b5a9b1ef1dae44c8499f3/src/path.c#L331

https://lists.debian.org/debian-lts-announce/2022/01/msg00018.html

https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling

https://security.gentoo.org/glsa/202211-10

https://www.debian.org/security/2022/dsa-5053

https://github.com/python-pillow/Pillow/blob/c5d9223a8b5e9295d15b5a9b1ef1dae44c8499f3/src/path.c#L331

https://lists.debian.org/debian-lts-announce/2022/01/msg00018.html

https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling

https://security.gentoo.org/glsa/202211-10

https://www.debian.org/security/2022/dsa-5053