View all vulnerabilities

CVE-2022-22816

path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.

Patch Available

Fix available through Seal Security. No upgrade required, protect your application instantly.

Fix without upgrading
Vulnerability Details
Score
Score Vector
Affected Versions
pillow < 9.0.0
Severity
Ecosystem
Python
Publish Date
January 10, 2022
Modified Date
December 5, 2023