AVG-2906 log

Package python-pillow
Status Fixed
Severity High
Type arbitrary code execution
Affected 11.2.0-1
Fixed 11.3.0-1
Current 11.3.0-1 [extra]
Ticket None
Created Tue Jul 1 15:08:11 2025
Advisory Pending
Issue Severity Remote Type Description
CVE-2025-48379 High No Arbitrary code execution
There is a heap buffer overflow when writing a sufficiently large (>64k encoded with default settings) image in the DDS format due to writing into a buffer...
References
https://github.com/python-pillow/Pillow/security/advisories/GHSA-xg8h-j46f-w952