FITS GZIP decompression bomb in Pillow

GHSA-whj4-6x5x-4v2j · BIT-pillow-2026-40192 · CVE-2026-40192

Published Apr 13, 2026 · Modified May 11, 2026

Description

Impact

Pillow did not limit the amount of GZIP-compressed data read when decoding a FITS image, making it vulnerable to decompression bomb attacks. A specially crafted FITS file could cause unbounded memory consumption, leading to denial of service (OOM crash or severe performance degradation).

Patches

The amount of data read is now limited to the necessary amount.
Fixed in Pillow 12.2.0 (PR #9521).

Workarounds

Avoid Pillow >= 10.3.0, < 12.2.0
Only open specific image formats, excluding FITS.

References

WEB https://github.com/python-pillow/Pillow/security/advisories/GHSA-whj4-6x5x-4v2j
ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2026-40192
WEB https://github.com/python-pillow/Pillow/pull/9521
WEB https://github.com/python-pillow/Pillow/commit/3cb854e8b2bab43f40e342e665f9340d861aa628
PACKAGE https://github.com/python-pillow/Pillow
WEB https://pillow.readthedocs.io/en/stable/releasenotes/12.2.0.html#prevent-fits-decompression-bomb

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes