CVE-2020-35655 | Pillow up to 8.0.x SGI RLE Image SGIRleDecode buffer overflow (Nessus ID 236661 / WID-SEC-2022-1835)
A vulnerability, which was classified as critical, has been found in Pillow up to 8.0.x. Impacted is the function SGIRleDecode of the component SGI RLE Image Handler. This manipulation causes buffer overflow.
This vulnerability appears as CVE-2020-35655. The attacker needs to be present on the local network. There is no available exploit.
It is advisable to upgrade the affected component.