VulnerableCode Package Details - pkg:apk/alpine/py3-pillow@7.1.2-r1?arch=armhf&distroversion=v3.12&reponame=main

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:apk/alpine/py3-pillow@7.1.2-r1?arch=armhf&distroversion=v3.12&reponame=main

purl	pkg:apk/alpine/py3-pillow@7.1.2-r1?arch=armhf&distroversion=v3.12&reponame=main

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-7bjx-gkf7-cke9	In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SGI RLE image files because offsets and length tables are mishandled.	BIT-pillow-2020-35655 CVE-2020-35655 GHSA-hf64-x4gq-p99h PYSEC-2021-71

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T19:08:24.422836+00:00	Alpine Linux Importer	Fixing	VCID-7bjx-gkf7-cke9	https://secdb.alpinelinux.org/v3.12/main.json	38.0.0