VulnerableCode Package Details - pkg:pypi/pil@1.1.4

Search for packages

Vulnerability	Summary	Fixed by
VCID-vz9s-jqpb-2ybf Aliases: CVE-2014-3589 GHSA-cfmr-38g9-f2h7 PYSEC-2014-10	PIL/IcnsImagePlugin.py in Python Imaging Library (PIL) and Pillow before 2.3.2 and 2.5.x before 2.5.2 allows remote attackers to cause a denial of service via a crafted block size.	There are no reported fixed by versions.
VCID-zmd3-henq-r7bd Aliases: CVE-2016-2533 GHSA-3c5c-7235-994j PYSEC-2016-19	Buffer overflow in the ImagingPcdDecode function in PcdDecode.c in Pillow before 3.1.1 and Python Imaging Library (PIL) 1.1.7 and earlier allows remote attackers to cause a denial of service (crash) via a crafted PhotoCD file.	There are no reported fixed by versions.

Vulnerability

Summary

Fixed by

VCID-vz9s-jqpb-2ybf
Aliases:
CVE-2014-3589
GHSA-cfmr-38g9-f2h7
PYSEC-2014-10

PIL/IcnsImagePlugin.py in Python Imaging Library (PIL) and Pillow before 2.3.2 and 2.5.x before 2.5.2 allows remote attackers to cause a denial of service via a crafted block size.

There are no reported fixed by versions.

VCID-zmd3-henq-r7bd
Aliases:
CVE-2016-2533
GHSA-3c5c-7235-994j
PYSEC-2016-19

Buffer overflow in the ImagingPcdDecode function in PcdDecode.c in Pillow before 3.1.1 and Python Imaging Library (PIL) 1.1.7 and earlier allows remote attackers to cause a denial of service (crash) via a crafted PhotoCD file.

There are no reported fixed by versions.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T20:33:47.829113+00:00	GitLab Importer	Affected by	VCID-zmd3-henq-r7bd	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/PIL/CVE-2016-2533.yml	38.4.0
2026-04-16T20:31:48.834343+00:00	GitLab Importer	Affected by	VCID-vz9s-jqpb-2ybf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/PIL/CVE-2014-3589.yml	38.4.0
2026-04-11T21:44:13.885542+00:00	GitLab Importer	Affected by	VCID-zmd3-henq-r7bd	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/PIL/CVE-2016-2533.yml	38.3.0
2026-04-11T21:42:11.410485+00:00	GitLab Importer	Affected by	VCID-vz9s-jqpb-2ybf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/PIL/CVE-2014-3589.yml	38.3.0
2026-04-02T21:58:21.076913+00:00	GitLab Importer	Affected by	VCID-zmd3-henq-r7bd	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/PIL/CVE-2016-2533.yml	38.1.0
2026-04-02T21:56:21.392112+00:00	GitLab Importer	Affected by	VCID-vz9s-jqpb-2ybf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/PIL/CVE-2014-3589.yml	38.1.0
2026-04-01T16:15:33.266575+00:00	GitLab Importer	Affected by	VCID-zmd3-henq-r7bd	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/PIL/CVE-2016-2533.yml	38.0.0
2026-04-01T16:13:31.088619+00:00	GitLab Importer	Affected by	VCID-vz9s-jqpb-2ybf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/PIL/CVE-2014-3589.yml	38.0.0