VDB

GCVE-110-MAGEIA-2014-476

GCVE-110-MAGEIA-2014-476
Advisory Published
Vulnetix · Advisory published November 21, 2014
Python Image Library (PIL) 1.1.7 and earlier and Pillow 2.3 might allow remote attackers to execute arbitrary commands via shell metacharacters, due to an incomplete fix for CVE-2014-1932 (CVE-2014-3007).

Affected Products

VendorProductVersionsPlatforms
Mageiapython-pillow0 (affected), 2.2.1-0.6.mga4 (unaffected)
Mageiapython-imaging0 (affected), 1.1.7-7.3.mga3 (unaffected)

Browse GCVE Records

73,738 records in the GCVE database · Updated July 19, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›