Search for packages
| purl | pkg:deb/debian/pillow@2.5.3-1?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-ma2g-2f8d-dqa9 | The Jpeg2KImagePlugin plugin in Pillow before 2.5.3 allows remote attackers to cause a denial of service via a crafted image. |
CVE-2014-3598
GHSA-j6f7-g425-4gmx PYSEC-2015-15 |
| VCID-vz9s-jqpb-2ybf | PIL/IcnsImagePlugin.py in Python Imaging Library (PIL) and Pillow before 2.3.2 and 2.5.x before 2.5.2 allows remote attackers to cause a denial of service via a crafted block size. |
CVE-2014-3589
GHSA-cfmr-38g9-f2h7 PYSEC-2014-10 |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T13:05:11.472730+00:00 | Debian Importer | Fixing | VCID-ma2g-2f8d-dqa9 | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-16T11:49:23.622952+00:00 | Debian Importer | Fixing | VCID-vz9s-jqpb-2ybf | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-13T08:59:51.562432+00:00 | Debian Importer | Fixing | VCID-ma2g-2f8d-dqa9 | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-13T08:04:03.792220+00:00 | Debian Importer | Fixing | VCID-vz9s-jqpb-2ybf | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-03T07:50:01.185491+00:00 | Debian Importer | Fixing | VCID-ma2g-2f8d-dqa9 | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |
| 2026-04-03T07:50:01.140604+00:00 | Debian Importer | Fixing | VCID-vz9s-jqpb-2ybf | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |