.avif)
View all vulnerabilities
CVE-2022-41727
Denial of service via crafted TIFF image in golang.org/x/image/tiff
Description
An attacker can craft a malformed TIFF image which will consume a significant amount of memory when passed to DecodeConfig. This could lead to a denial of service.
Patch Available
Fix available through Seal Security. No upgrade required, protect your application instantly.
Fix without upgradingVulnerability Details
Score
Score Vector
Affected Versions
golang.org/x/image < 0.5.0
Severity
Ecosystem
GO
Publish Date
February 16, 2023
Modified Date
May 20, 2024