Package impact
Go / golang.org/x/image
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-33813 | high | 7.5 | 7.5 | 1mo ago | Parsing a WEBP image with an invalid, large size panics on 32-bit platforms. | |||
| CVE-2026-33812 | medium | 6.1 | 6.1 | 1mo ago | Parsing a malicious font file can cause excessive memory allocation. | |||
| CVE-2026-42500 | medium | 5.3 | 5.3 | 12h ago | Decoding a paletted BMP file with an out-of-range palette index results in a panic when accessing pixels in the invalid image. |