FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
998ca824-ef55-11e9-b81f-3085a9a95629Pillow -- Allocation of resources without limits or throttling

Mitre reports:

An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid image files, the library can either allocate very large amounts of memory or take an extremely long period of time to process the image.


Discovery 2019-09-24
Entry 2019-10-15
py27-pillow
py35-pillow
py36-pillow
py37-pillow
lt 6.2.0

https://github.com/python-pillow/Pillow/issues/4123
CVE-2019-16865
ports/241268