{"id":"PYSEC-2025-61","details":"Pillow is a Python imaging library. In versions 11.2.0 to before 11.3.0, there is a heap buffer overflow when writing a sufficiently large (\u003e64k encoded with default settings) image in the DDS format due to writing into a buffer without checking for available space. This only affects users who save untrusted data as a compressed DDS image. This issue has been patched in version 11.3.0.","aliases":["BIT-pillow-2025-48379","CVE-2025-48379","GHSA-xg8h-j46f-w952"],"modified":"2025-07-07T14:12:46.226030Z","published":"2025-07-01T19:15:27Z","references":[{"type":"ADVISORY","url":"https://github.com/python-pillow/Pillow/security/advisories/GHSA-xg8h-j46f-w952"},{"type":"FIX","url":"https://github.com/python-pillow/Pillow/commit/ef98b3510e3e4f14b547762764813d7e5ca3c5a4"},{"type":"WEB","url":"https://github.com/python-pillow/Pillow/pull/9041"},{"type":"WEB","url":"https://github.com/python-pillow/Pillow/releases/tag/11.3.0"}],"affected":[{"package":{"name":"pillow","ecosystem":"PyPI","purl":"pkg:pypi/pillow"},"ranges":[{"type":"GIT","repo":"https://github.com/python-pillow/pillow","events":[{"introduced":"0"},{"fixed":"89f1f4626a2aaf5f3d5ca6437f41def2998fbe09"},{"fixed":"ef98b3510e3e4f14b547762764813d7e5ca3c5a4"}]},{"type":"ECOSYSTEM","events":[{"introduced":"11.2.0"},{"fixed":"11.3.0"}]}],"versions":["11.2.0","11.2.1"],"database_specific":{"source":"https://github.com/pypa/advisory-database/blob/main/vulns/pillow/PYSEC-2025-61.yaml"}}],"schema_version":"1.7.3"}