CVE-2021-28678

Published: 10 May 2021

An issue was discovered in Pillow before 8.2.0. For BLP data, BlpImagePlugin did not properly check that reads (after jumping to file offsets) returned data. This could lead to a DoS where the decoder could be run a large number of times on empty data.

Priority

Cvss 3 Severity Score

5.5

Score breakdown

Status

Package	Release	Status
pillow Launchpad, Ubuntu, Debian	bionic	Released (5.1.0-1ubuntu0.6)
	focal	Released (7.0.0-4ubuntu0.4)
	groovy	Released (7.2.0-1ubuntu0.3)
	hirsute	Released (8.1.2-1ubuntu0.1)
	jammy	Released (8.1.2+dfsg-0.1ubuntu1)
	kinetic	Released (8.1.2+dfsg-0.1ubuntu1)
	lunar	Released (8.1.2+dfsg-0.1ubuntu1)
	impish	Released (8.1.2+dfsg-0.1ubuntu1)
	trusty	Needs triage
	xenial	Needs triage
	upstream	Released (8.2.0)
	Patches: upstream: https://github.com/python-pillow/Pillow/commit/496245aa4365d0827390bd0b6fbd11287453b3a1
pillow-python2 Launchpad, Ubuntu, Debian	groovy	Ignored (end of life)
	jammy	Does not exist
	kinetic	Does not exist
	lunar	Does not exist
	impish	Does not exist
	trusty	Does not exist
	xenial	Does not exist
	bionic	Does not exist
	focal	Needs triage
	hirsute	Does not exist
	upstream	Needs triage
python-imaging Launchpad, Ubuntu, Debian	focal	Does not exist
	groovy	Does not exist
	hirsute	Does not exist
	jammy	Does not exist
	kinetic	Does not exist
	lunar	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
	impish	Does not exist
	bionic	Does not exist

Severity score breakdown

Parameter	Value
Base score	5.5
Attack vector	Local
Attack complexity	Low
Privileges required	None
User interaction	Required
Scope	Unchanged
Confidentiality	None
Integrity impact	None
Availability impact	High
Vector	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›