| CVE-2026-33813 |
high |
7.5 |
7.5 |
|
|
|
1mo ago |
Parsing a WEBP image with an invalid, large size panics on 32-bit platforms. |
| CVE-2026-33812 |
medium |
6.1 |
6.1 |
|
|
|
1mo ago |
Parsing a malicious font file can cause excessive memory allocation. |
| CVE-2026-42500 |
medium |
5.3 |
5.3 |
|
|
|
3h ago |
Panic when reading out of bound palette index in golang.org/x/image/bmp |
| CVE-2026-46599 |
unknown |
— |
— |
|
|
|
1h ago |
Excessive resource consumption in PackBits decompression in golang.org/x/image/tiff |
| CVE-2026-33809 |
unknown |
— |
— |
|
|
|
2mo ago |
A maliciously crafted TIFF file can cause image decoding to attempt to allocate up 4GiB of memory, causing either excessive resource consumption or an out-of-memory error. |
| CVE-2024-24792 |
unknown |
— |
— |
|
|
|
2y ago |
Parsing a corrupt or malicious image with invalid color indices can cause a panic. |
| CVE-2023-29408 |
unknown |
— |
— |
|
|
|
3y ago |
The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted image can exploit this to cause a small image (both in terms of pixel width/height, and encoded size… |
| CVE-2023-29407 |
unknown |
— |
— |
|
|
|
3y ago |
A maliciously-crafted image can cause excessive CPU consumption in decoding. A tiled image with a height of 0 and a very large width can cause excessive CPU consumption, despite the image size (width… |
| CVE-2022-41727 |
unknown |
— |
— |
|
|
|
3y ago |
An attacker can craft a malformed TIFF image which will consume a significant amount of memory when passed to DecodeConfig. This could lead to a denial of service. |