New: Corgea AI Pentesting — autonomous penetration testing in hours, not weeks
UNKNOWN Go

Lack of limit on tile sizes in x/image/tiff in golang.org/x/image

GO-2026-5062 · CVE-2026-46602

Published · Modified

Description

The TIFF decoder does not set a limit on the size of tiles in tiled images, permitting a malicious or corrupt image containing a very large tile to cause unbounded memory consumption.

Ready to move

Start Securing

Free, no credit card | First findings in minutes