python-pillow
Moderate fix1 remedy
cpe:2.3:a:python:pillow:*:*:*:*:*:*:*
Moderate fix1 remedy
- 11.2.0
Pillow Heap Buffer Overflow Vulnerability in DDS Image Handling
Vulnerability
Patched
A heap buffer overflow vulnerability has been identified in the Python imaging library Pillow, specifically in versions 11.2.0 prior to 11.3.0. The issue arises when writing a compressed DDS image that is larger than 64k, as the library fails to check for available buffer space before writing. This vulnerability only affects users who save untrusted data as a compressed DDS image.
Impact
Exploitation of this vulnerability leads to a heap buffer overflow, which can commonly result in memory corruption and potentially allow for arbitrary code execution.
Reproduction
The vulnerability can be reproduced by using Pillow version 11.2.0 prior to 11.3.0 and saving a compressed DDS image larger than 64k. This can be done by resizing an image to 440x440 pixels and saving it in a DDS format with a pixel format that compresses the image, such as DXT1.
Remediation
Users can upgrade to Pillow version 11.3.0, where this vulnerability has been patched.
Added: Jul 1, 2025, 9:14 PM
Updated: Jul 1, 2025, 9:14 PM
Vulnerability Rating
Custom Algorithm
spread
7.8impact
2.5exploitability
4.6remediation
7.7relevance
0.2threat
6.4urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.