Security Advisory
CVE-2021-23437
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function.