A vulnerability categorized as problematic has been discovered in python-pillow Pillow up to 12.2.x. This affects an unknown part of the file src/libImaging/Jpeg2KDecode.c of the component Decoding. Executing a manipulation can lead to out-of-bounds write.
This vulnerability appears as CVE-2026-59204. The attack may be performed from remote. There is no available exploit.