CVE-2021-25288

Published June 2nd, 2021

View on NVD ↗

CVSS v3

9.1

CRITICAL

CVSS v2

6.4

MEDIUM

Affected

1

PROJECT

Description

An issue was discovered in Pillow before 8.2.0. There is an out-of-bounds read in J2kDecode, in j2ku_gray_i.

python-pillow/Pillow

Python Imaging Library (fork)

GitHub

13.6K