CVE-2026-25990
EUVD-2026-621811.02.2026, 21:16
Pillow is a Python imaging library. From 10.3.0 to before 12.1.1, an out-of-bounds write may be triggered when loading a specially crafted PSD image. This vulnerability is fixed in 12.1.1.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| python | pillow | 10.3.0 ≤ 𝑥 < 12.1.1 |
𝑥
= Vulnerable software versions
Debian Releases
Amazon Linux Releases
Amazon Package | |||||
|---|---|---|---|---|---|
| python-pillow |
| ||||
| python-pillow-debuginfo |
| ||||
| python-pillow-debugsource |
| ||||
| python-pillow-devel |
| ||||
| python-pillow-doc |
| ||||
| python-pillow-sane |
| ||||
| python-pillow-tk |
| ||||
| python3-pillow |
| ||||
| python3-pillow-debuginfo |
| ||||
| python3-pillow-devel |
| ||||
| python3-pillow-tk |
| ||||
| python3-pillow-tk-debuginfo |
|
Common Weakness Enumeration
References