Security Advisory

CVE-2021-27923

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-03-03 08:41:40

Last updated 2025-08-15 04:40:08

Assigner mitre

State PUBLISHED

Description

Pillow before 8.1.2 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for an ICO container, and thus an attempted memory allocation can be very large.

← Browse all CVEs View on cve.org ↗