PT-2026-28086 · Golang.Org/X/Image · Golang.Org/X/Image/Tiff
Published
2026-03-25
·
Updated
2026-03-25
·
CVE-2026-33809
CVSS v3.1
5.3
Medium
| AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
A maliciously crafted TIFF file can cause image decoding to attempt to allocate up 4GiB of memory, causing either excessive resource consumption or an out-of-memory error.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Golang.Org/X/Image/Tiff