Search for packages
| purl | pkg:alpm/archlinux/python-pillow@8.3.2-1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-bnjc-ytj1-aaaq | The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function. |
BIT-2021-23437
BIT-pillow-2021-23437 CVE-2021-23437 GHSA-98vv-pw6r-q6q4 PYSEC-2021-317 SNYK-PYTHON-PILLOW-1319443 |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T07:47:03.262051+00:00 | Arch Linux Importer | Fixing | VCID-bnjc-ytj1-aaaq | https://security.archlinux.org/AVG-2366 | 36.0.0 |
| 2024-09-18T02:02:26.127328+00:00 | Arch Linux Importer | Fixing | VCID-bnjc-ytj1-aaaq | https://security.archlinux.org/AVG-2366 | 34.0.1 |
| 2024-01-03T22:28:27.304915+00:00 | Arch Linux Importer | Fixing | VCID-bnjc-ytj1-aaaq | https://security.archlinux.org/AVG-2366 | 34.0.0rc1 |