[Epel-packagers-sig] [Bug 2052682] CVE-2022-24303 python-pillow: temporary directory with a space character allows removal of unrelated file after im.show() and related actions

11 Feb 2022


      https://bugzilla.redhat.com/show_bug.cgi?id=2052682
--- Doc Text *updated* by Sandipan Roy saroy@redhat.com ---
A flaw was found in python-pillow. The vulnerability occurs due to the not validated remove operation, leading to Improper input validation. This flaw allows an attacker to externally-influenced input commands that modify or remove the intended command.
-- 
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2052682

2025

2024

2023

2022

2021

[Epel-packagers-sig] [Bug 2052682] CVE-2022-24303 python-pillow: temporary directory with a space character allows removal of unrelated file after im.show() and related actions