CVE-2023-44271

NameCVE-2023-44271
DescriptionAn issue was discovered in Pillow before 10.0.0. It is a Denial of Service that uncontrollably allocates memory to process a given task, potentially causing a service to crash by having it run out of memory. This occurs for truetype in ImageFont when textlength in an ImageDraw instance operates on a long text argument.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDLA-3768-1, DSA-5704-1

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
pillow (PTS)buster5.4.1-2+deb10u3vulnerable
buster (security)5.4.1-2+deb10u6fixed
bullseye8.1.2+dfsg-0.3+deb11u1vulnerable
bullseye (security)8.1.2+dfsg-0.3+deb11u2fixed
bookworm9.4.0-1.1vulnerable
bookworm (security)9.4.0-1.1+deb12u1fixed
sid, trixie10.3.0-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
pillowsourcebuster5.4.1-2+deb10u5DLA-3768-1
pillowsourcebullseye8.1.2+dfsg-0.3+deb11u2DSA-5704-1
pillowsourcebookworm9.4.0-1.1+deb12u1DSA-5704-1
pillowsource(unstable)10.0.0-1

Notes

https://github.com/python-pillow/Pillow/pull/7244
https://github.com/python-pillow/Pillow/commit/1fe1bb49c452b0318cad12ea9d97c3bef188e9a7 (10.0.0)

Search for package or bug name: Reporting problems