Vulnerability in Python Pillow

CVE-2014-3598

The Jpeg2KImagePlugin plugin in Pillow before 2.5.3 allows remote attackers to cause a denial of service via a crafted image.

EPSS: 0.004 (61.2th percentile) — read the EPSS interpretation.

Affected products

Python Pillow
Opensuse — versions 13.2
N/a — versions n/a

Weakness classification (CWE)

CWE-399

References

openSUSE-SU-2015:0798 (vendor-advisory, x_refsource_SUSE)
secalert@redhat.com (x_refsource_CONFIRM, Vendor Advisory)