Skip to main content

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

CVE-2016-0775 | Mondoo Vulnerability Intelligence

Vulnerability IntelligenceCVE-2016-0775

CVE-2016-0775

MEDIUM6.5

Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode

Published Apr 13, 2016

Modified 1 years ago

Details

Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.

References

http://www.debian.org/security/2016/dsa-3499

https://github.com/python-pillow/Pillow/blob/c3cb690fed5d4bf0c45576759de55d054916c165/CHANGES.rst

https://github.com/python-pillow/Pillow/commit/893a40850c2d5da41537958e40569c029a6e127b

https://security.gentoo.org/glsa/201612-52

https://www.cve.org/CVERecord?id=CVE-2016-0775

CVSS Analysis

CVSS v3.0

6.5

Exploitability

Attack Vector

NetworkAV:N

Attack Complexity

LowAC:L

Privileges Required

NonePR:N

User Interaction

RequiredUI:R

Scope

Scope

UnchangedS:U

Impact

Confidentiality

NoneC:N

Integrity

NoneI:N

Availability

HighA:H

6.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Ecosystems

Timeline

PublishedApr 13, 2016

ModifiedAug 5, 2024