CVE-2026-42308

Sažetak

Pillow is a Python imaging library. Prior to version 12.2.0, if a font advances for each glyph by an exceeding large amount, when Pillow keeps track of the current position, it may lead to an integer overflow. This issue has been patched in version 12.2.0.

Reference

https://github.com/python-pillow/Pillow/releases/tag/12.2.0
https://github.com/python-pillow/Pillow/security/advisories/GHSA-wjx4-4jcj-g98j

CVSS

Base:	0.0
Impact:	None
Exploitability:	None

Pristup

Vektor	Složenost	Autentikacija
None	None	None

Impact

Povjerljivost	Cjelovitost	Dostupnost
None	None	None

CVSS vektor

None

Zadnje važnije ažuriranje

09-05-2026 - 06:16

Objavljeno

09-05-2026 - 06:16