VulnerableCode Package Details - pkg:alpm/archlinux/python-pillow@8.2.0-2

Search for packages

Package details: pkg:alpm/archlinux/python-pillow@8.2.0-2

Essentials
History (5)

purl	pkg:alpm/archlinux/python-pillow@8.2.0-2

Next non-vulnerable version	8.3.0-1
Latest non-vulnerable version	8.3.2-1
Risk	4.5

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-qs47-4gpq-aaas Aliases: BIT-2021-34552 BIT-pillow-2021-34552 CVE-2021-34552 GHSA-7534-mm45-c74v PYSEC-2021-331	Pillow through 8.2.0 and PIL (aka Python Imaging Library) through 1.1.7 allow an attacker to pass controlled parameters directly into a convert function to trigger a buffer overflow in Convert.c.	8.3.0-1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:46:32.243944+00:00	Arch Linux Importer	Affected by	VCID-qs47-4gpq-aaas	https://security.archlinux.org/AVG-2150	36.0.0
2024-10-17T07:47:45.316136+00:00	Arch Linux Importer	Affected by	VCID-qs47-4gpq-aaas	https://security.archlinux.org/AVG-2150	34.0.2
2024-09-18T02:01:50.185623+00:00	Arch Linux Importer	Affected by	VCID-qs47-4gpq-aaas	https://security.archlinux.org/AVG-2150	34.0.1
2024-04-23T19:47:33.608800+00:00	Arch Linux Importer	Affected by	VCID-qs47-4gpq-aaas	https://security.archlinux.org/AVG-2150	34.0.0rc4
2024-01-03T22:27:55.127612+00:00	Arch Linux Importer	Affected by	VCID-qs47-4gpq-aaas	https://security.archlinux.org/AVG-2150	34.0.0rc1