CVE-2021-34552 log

Severity Medium
Remote Yes
Type Arbitrary code execution
Pillow through 8.2.0 allows an attacker to pass controlled parameters directly into a convert function to trigger a buffer overflow in Convert.c.
Group Package Affected Fixed Severity Status Ticket
AVG-2150 python-pillow 8.2.0-2 8.3.0-1 Medium Fixed
Date Advisory Group Package Severity Type
14 Jul 2021 ASA-202107-26 AVG-2150 python-pillow Medium arbitrary code execution