RHSA-2021:4149
- Source
- https://access.redhat.com/errata/RHSA-2021:4149
- Import Source
- https://security.access.redhat.com/data/osv/RHSA-2021:4149.json
- JSON Data
- https://api.osv.dev/v1/vulns/RHSA-2021:4149
- Related
- Published
- 2024-09-14T01:23:59Z
- Modified
- 2024-09-14T01:23:59Z
- Severity
-
- 9.1 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H CVSS Calculator
- Summary
- Red Hat Security Advisory: python-pillow security update
- Details
- References
-
- https://access.redhat.com/errata/RHSA-2021:4149
- https://access.redhat.com/security/updates/classification/#moderate
- https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.5_release_notes/
- https://bugzilla.redhat.com/show_bug.cgi?id=1915420
- https://bugzilla.redhat.com/show_bug.cgi?id=1915432
- https://bugzilla.redhat.com/show_bug.cgi?id=1934685
- https://bugzilla.redhat.com/show_bug.cgi?id=1934699
- https://bugzilla.redhat.com/show_bug.cgi?id=1934705
- https://bugzilla.redhat.com/show_bug.cgi?id=1935384
- https://bugzilla.redhat.com/show_bug.cgi?id=1935396
- https://bugzilla.redhat.com/show_bug.cgi?id=1935401
- https://bugzilla.redhat.com/show_bug.cgi?id=1958226
- https://bugzilla.redhat.com/show_bug.cgi?id=1958231
- https://bugzilla.redhat.com/show_bug.cgi?id=1958240
- https://bugzilla.redhat.com/show_bug.cgi?id=1958252
- https://bugzilla.redhat.com/show_bug.cgi?id=1958257
- https://bugzilla.redhat.com/show_bug.cgi?id=1958263
- https://bugzilla.redhat.com/show_bug.cgi?id=1982378
- https://access.redhat.com/security/data/csaf/v2/advisories/2021/rhsa-2021_4149.json
- https://access.redhat.com/security/cve/CVE-2020-35653
- https://www.cve.org/CVERecord?id=CVE-2020-35653
- https://nvd.nist.gov/vuln/detail/CVE-2020-35653
- https://pillow.readthedocs.io/en/stable/releasenotes/8.1.0.html#security
- https://access.redhat.com/security/cve/CVE-2020-35655
- https://www.cve.org/CVERecord?id=CVE-2020-35655
- https://nvd.nist.gov/vuln/detail/CVE-2020-35655
- https://access.redhat.com/security/cve/CVE-2021-25287
- https://www.cve.org/CVERecord?id=CVE-2021-25287
- https://nvd.nist.gov/vuln/detail/CVE-2021-25287
- https://access.redhat.com/security/cve/CVE-2021-25288
- https://www.cve.org/CVERecord?id=CVE-2021-25288
- https://nvd.nist.gov/vuln/detail/CVE-2021-25288
- https://access.redhat.com/security/cve/CVE-2021-25290
- https://www.cve.org/CVERecord?id=CVE-2021-25290
- https://nvd.nist.gov/vuln/detail/CVE-2021-25290
- https://access.redhat.com/security/cve/CVE-2021-25292
- https://www.cve.org/CVERecord?id=CVE-2021-25292
- https://nvd.nist.gov/vuln/detail/CVE-2021-25292
- https://access.redhat.com/security/cve/CVE-2021-25293
- https://www.cve.org/CVERecord?id=CVE-2021-25293
- https://nvd.nist.gov/vuln/detail/CVE-2021-25293
- https://access.redhat.com/security/cve/CVE-2021-27921
- https://www.cve.org/CVERecord?id=CVE-2021-27921
- https://nvd.nist.gov/vuln/detail/CVE-2021-27921
- https://access.redhat.com/security/cve/CVE-2021-27922
- https://www.cve.org/CVERecord?id=CVE-2021-27922
- https://nvd.nist.gov/vuln/detail/CVE-2021-27922
- https://access.redhat.com/security/cve/CVE-2021-27923
- https://www.cve.org/CVERecord?id=CVE-2021-27923
- https://nvd.nist.gov/vuln/detail/CVE-2021-27923
- https://access.redhat.com/security/cve/CVE-2021-28675
- https://www.cve.org/CVERecord?id=CVE-2021-28675
- https://nvd.nist.gov/vuln/detail/CVE-2021-28675
- https://access.redhat.com/security/cve/CVE-2021-28676
- https://www.cve.org/CVERecord?id=CVE-2021-28676
- https://nvd.nist.gov/vuln/detail/CVE-2021-28676
- https://pillow.readthedocs.io/en/stable/releasenotes/8.2.0.html#security
- https://access.redhat.com/security/cve/CVE-2021-28677
- https://www.cve.org/CVERecord?id=CVE-2021-28677
- https://nvd.nist.gov/vuln/detail/CVE-2021-28677
- https://access.redhat.com/security/cve/CVE-2021-28678
- https://www.cve.org/CVERecord?id=CVE-2021-28678
- https://nvd.nist.gov/vuln/detail/CVE-2021-28678
- https://access.redhat.com/security/cve/CVE-2021-34552
- https://www.cve.org/CVERecord?id=CVE-2021-34552
- https://nvd.nist.gov/vuln/detail/CVE-2021-34552
- https://pillow.readthedocs.io/en/stable/releasenotes/8.3.0.html#buffer-overflow
Affected packages
Red Hat:enterprise_linux:8::appstream / python-pillow
Package
- Name
- python-pillow
- Purl
- pkg:rpm/redhat/python-pillow
Red Hat:enterprise_linux:8::appstream / python-pillow-debuginfo
Package
- Name
- python-pillow-debuginfo
- Purl
- pkg:rpm/redhat/python-pillow-debuginfo
Red Hat:enterprise_linux:8::appstream / python-pillow-debugsource
Package
- Name
- python-pillow-debugsource
- Purl
- pkg:rpm/redhat/python-pillow-debugsource
Red Hat:enterprise_linux:8::appstream / python3-pillow
Package
- Name
- python3-pillow
- Purl
- pkg:rpm/redhat/python3-pillow
Red Hat:enterprise_linux:8::appstream / python3-pillow-debuginfo
Package
- Name
- python3-pillow-debuginfo
- Purl
- pkg:rpm/redhat/python3-pillow-debuginfo