CVE-2020-10177: Out-of-bounds reads in Pillow
5.5
CVSS Score
3.1
Basic Information
CVE ID
GHSA ID
EPSS Score
0.49079%
CWE
Published
7/27/2020
Updated
10/9/2024
KEV Status
No
Technology
Python
Technical Details
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
---|---|---|---|
Pillow | pip | < 7.1.0 | 7.1.0 |
Vulnerability Intelligence
Miggo AI
Root Cause Analysis
The vulnerability stems from the ImagingFliDecode function in FliDecode.c, as shown in the commit diff where bounds checks were added via the ERR_IF_DATA_OOB macro. The original code lacked proper validation of 'data' pointer offsets when processing FLI chunks, leading to OOB reads. Multiple specific cases were patched in this function across different chunk types (BRUN, LC, SS2), all requiring boundary checks. The consistent use of the new macro across these cases confirms the function's central role in the vulnerability.