CVE-2024-32035

Name of the Vulnerable Software and Affected Versions ImageSharp versions prior to 2.1.8 ImageSharp versions prior to 3.1.4

Description A vulnerability discovered in the ImageSharp library can lead to excessive memory usage in image decoders when processing specially crafted files. This flaw can be exploited to cause a denial of service (DoS) by depleting process memory, affecting applications and services that rely on ImageSharp for image processing tasks.

Recommendations For versions prior to 2.1.8, update to version 2.1.8 to mitigate the risk of exploitation. For versions prior to 3.1.4, update to version 3.1.4 to mitigate the risk of exploitation. As a temporary workaround, consider using Image.Identify to determine the image dimensions before calling Image.Decode(Async) to enforce a limit and prevent excessive memory usage.