AVG-2906 log
| Package | python-pillow |
| Status | Vulnerable |
| Severity | High |
| Type | arbitrary code execution |
| Affected | 11.2.0-1 |
| Fixed | Unknown |
| Current |
11.3.0-1 [extra-testing] 11.2.1-1 [extra] |
| Ticket | Create |
| Created | Tue Jul 1 15:08:11 2025 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2025-48379 | High | No | Arbitrary code execution | There is a heap buffer overflow when writing a sufficiently large (>64k encoded with default settings) image in the DDS format due to writing into a buffer... |
| References |
|---|
https://github.com/python-pillow/Pillow/security/advisories/GHSA-xg8h-j46f-w952 |