Vulnerabilities

Report: Update: CVE-2026-42310 - Pillow: PDF Parsing Trailer Infinite Loop (DoS)

2026-05-09 0 views admin

CVE ID :CVE-2026-42310 Published : May 9, 2026, 4:10 a.m. | 1 hour, 34 minutes ago Description :Pillow is a Python imaging library. From version 4.2.0 to before version 12.2.0, an attacker can supply a malicious PDF that causes the process to hang indefinitely, consuming 100% CPU and making the application unresponsive. This issue has been patched in version 12.2.0. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-42310

Published

May 9, 2026

Affected Product: Python

🏷️ Tags

reportupdate42310pillowparsingtrailerinfinitepublishedcvecve-2026-42310

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: Update: CVE-2026-42310 - Pillow: PDF Parsing Trailer Infinite Loop (DoS)

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: Latest: CVE-2026-42311 - Pillow: OOB Write with Invalid PSD Tile Extents (Integer Overflow)

Report: Breaking: CVE-2026-42560 - auth: Patreon provider assigns the same local user ID to every authenticated Pat...

Report: CVE-2026-41311 - LiquidJS is vulnerable to Denial of Service via circular block reference in layout

Report: CVE-2026-41163 - bubblewrap vulnerable to privilege escalation in setuid mode via ptrace - 2025 Update

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting