Pillow: Integer overflow when processing fonts_CVE-2026-42308

5.1 / 10

MEDIUM

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

Description

Pillow is a Python imaging library. Prior to version 12.2.0, if a font advances for each glyph by an exceeding large amount, when Pillow keeps track of the current position, it may lead to an integer overflow. This issue has been patched in version 12.2.0.

Basic Information

ID CVE-2026-42308

Source GitHub_M

Published May 9, 2026 at 04:09

Affected Product

Vendor python-pillow

Product Pillow

Version < 12.2.0

Affected Versions python-pillow Pillow < 12.2.0

CWE Classification

CWE-190

References

{
    "lastseen": "",
    "description": "Pillow is a Python imaging library. Prior to version 12.2.0, if a font advances for each glyph by an exceeding large amount, when Pillow keeps track of the current position, it may lead to an integer overflow. This issue has been patched in version 12.2.0.",
    "published": "2026-05-09T04:09:01.631Z",
    "modified": "2026-05-09T04:09:01.631Z",
    "type": "cve",
    "title": "Pillow: Integer overflow when processing fonts",
    "source": "GitHub_M",
    "references": "https://github.com/python-pillow/Pillow/security/advisories/GHSA-wjx4-4jcj-g98j\nhttps://github.com/python-pillow/Pillow/releases/tag/12.2.0",
    "id": "CVE-2026-42308",
    "bulletinFamily": "",
    "cwe": [
        "CWE-190"
    ],
    "cvelist": null,
    "sourceData": "python-pillow Pillow < 12.2.0",
    "sourceHref": "",
    "cvss": {
        "score": 5.1,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Pillow",
    "version": "< 12.2.0",
    "vendor": "python-pillow",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}