Pillow: Arbitrary code execution A vulnerability has been discovered in Pillow, which may lead to arbitrary code execution. pillow 2024-11-17 2024-11-17 928391 local and remote 10.3.0 10.3.0

The friendly PIL fork.

A vulnerability has been discovered in Pillow. Please review the CVE identifier referenced below for details.

Please review the referenced CVE identifier for details.

There is no known workaround at this time.

All Pillow users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=dev-python/pillow-10.3.0" CVE-2024-28219 graaff graaff