CVE-2020-10994

Published June 25th, 2020

View on NVD ↗

CVSS v3

5.5

MEDIUM

CVSS v2

4.3

MEDIUM

Affected

1

PROJECT

Description

In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multiple out-of-bounds reads via a crafted JP2 file.

python-pillow/Pillow

Python Imaging Library (fork)

GitHub

13.6K