Home

Description

Pillow is a Python imaging library. From 12.0.0 through 12.2.0, Pillow's EPS parser in PIL/EpsImagePlugin.py accepts a negative byte count in the %%BeginBinary directive, allowing a crafted EPS file to cause Image.open() to seek backwards to the same directive and parse it repeatedly in an infinite loop. This issue is fixed in version 12.3.0.

PUBLISHED Reserved 2026-07-02 | Published 2026-07-14 | Updated 2026-07-14 | Assigner GitHub_M




MEDIUM: 5.3CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Problem types

CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop')

Product status

>= 12.0.0, < 12.3.0
affected

References

github.com/...Pillow/security/advisories/GHSA-pg7v-jwj7-p798

github.com/python-pillow/Pillow/pull/9708

github.com/...ommit/03992618118b4a76b6163cd72ab5ecd684133b83

github.com/python-pillow/Pillow/releases/tag/12.3.0

cve.org (CVE-2026-59203)

nvd.nist.gov (CVE-2026-59203)

Download JSON