REDHAT-BUG-2259479
First published: Mon Jan 22 2024(Updated: )
Pillow through 10.1.0 allows PIL.ImageMath.eval Arbitrary Code Execution via the environment parameter, a different vulnerability than <a href="https://access.redhat.com/security/cve/CVE-2022-22817">CVE-2022-22817</a> (which was about the expression parameter). <a href="http://www.openwall.com/lists/oss-security/2024/01/20/1">http://www.openwall.com/lists/oss-security/2024/01/20/1</a> <a href="https://devhub.checkmarx.com/cve-details/CVE-2023-50447/">https://devhub.checkmarx.com/cve-details/CVE-2023-50447/</a> <a href="https://duartecsantos.github.io/2023-01-02-CVE-2023-50447/">https://duartecsantos.github.io/2023-01-02-CVE-2023-50447/</a> <a href="https://github.com/python-pillow/Pillow/releases">https://github.com/python-pillow/Pillow/releases</a>
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Python Imaging Library (Pillow) | <=10.1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://access.redhat.com/security/cve/CVE-2022-22817
- http://www.openwall.com/lists/oss-security/2024/01/20/1
- https://devhub.checkmarx.com/cve-details/CVE-2023-50447/
- https://duartecsantos.github.io/2023-01-02-CVE-2023-50447/
- https://github.com/python-pillow/Pillow/releases
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2259480
- https://github.com/python-pillow/Pillow/pull/7655/files
- https://access.redhat.com/errata/RHSA-2024:0754
- https://access.redhat.com/errata/RHSA-2024:0857
- https://access.redhat.com/errata/RHSA-2024:0893
- https://access.redhat.com/errata/RHSA-2024:1059
- https://access.redhat.com/errata/RHSA-2024:1060
- https://access.redhat.com/errata/RHSA-2024:1058
- https://access.redhat.com/errata/RHSA-2024:3781
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2259479#c16
- https://bugzilla.redhat.com/show_bug.cgi?id=2259479
Frequently Asked Questions
What is the severity of REDHAT-BUG-2259479?
The severity of REDHAT-BUG-2259479 is classified as high due to the potential for arbitrary code execution.
How do I fix REDHAT-BUG-2259479?
To fix REDHAT-BUG-2259479, you should upgrade Pillow to version 10.1.1 or later.
What impact does REDHAT-BUG-2259479 have on applications?
REDHAT-BUG-2259479 allows an attacker to execute arbitrary code in applications using affected versions of Pillow.
Which versions of Pillow are affected by REDHAT-BUG-2259479?
Pillow versions up to and including 10.1.0 are affected by REDHAT-BUG-2259479.
Is REDHAT-BUG-2259479 related to any other vulnerabilities?
Yes, REDHAT-BUG-2259479 is different from CVE-2022-22817, which concerns the expression parameter.
- agent/severity
- agent/type
- agent/description
- agent/first-publish-date
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2023-50447
- agent/references
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/python
- canonical/python imaging library (pillow)