Package impact
Go / golang.org/x/image
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-33812 | medium | 6.1 | 6.1 | 1mo ago | Parsing a malicious font file can cause excessive memory allocation. | |||
| CVE-2026-42500 | medium | 5.3 | 5.3 | 19h ago | Decoding a paletted BMP file with an out-of-range palette index results in a panic when accessing pixels in the invalid image. | |||
| CVE-2026-46599 | unknown | — | — | 17h ago | The TIFF decoder does not place a limit on the size of PackBits-compressed data. A maliciously-crafted image can exploit this to cause a small image (both in terms of pixel width/height and encoded s… |