UNKNOWN Go
Lack of limit on tile sizes in x/image/tiff in golang.org/x/image
GO-2026-5062 · CVE-2026-46602
Published · Modified
Description
The TIFF decoder does not set a limit on the size of tiles in tiled images, permitting a malicious or corrupt image containing a very large tile to cause unbounded memory consumption.
References
Ready to move
Start Securing
Free, no credit card | First findings in minutes