AVG-2906 log
| Package | python-pillow |
| Status | Fixed |
| Severity | High |
| Type | arbitrary code execution |
| Affected | 11.2.0-1 |
| Fixed | 11.3.0-1 |
| Current | 12.0.0-2 [extra] |
| Ticket | None |
| Created | Tue Jul 1 15:08:11 2025 |
| Advisory | Pending |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2025-48379 | High | No | Arbitrary code execution | There is a heap buffer overflow when writing a sufficiently large (>64k encoded with default settings) image in the DDS format due to writing into a buffer... |
| References |
|---|
https://github.com/python-pillow/Pillow/security/advisories/GHSA-xg8h-j46f-w952 |