Uncontrolled Memory Allocation in Pillow - CVE-2026-55380
Published: July 3, 2026
Pillow
Detailed vulnerability description
The vulnerability allows a remote attacker to cause a denial of service.
The vulnerability exists due to memory allocation with excessive size value in GdImageFile._open() and the subsequent image loading path when processing a crafted .gd image through PIL.GdImageFile.open(fp) and calling load(). A remote attacker can supply a specially crafted .gd file with oversized dimensions to cause a denial of service.
A 1037-byte header-only file is sufficient to trigger an attempted allocation of approximately 4.3 GB.