All vulnerabilities
CVE-2022-41727
Denial of service via crafted TIFF image in golang.org/x/image/tiff
Description
An attacker can craft a malformed TIFF image which will consume a significant amount of memory when passed to DecodeConfig. This could lead to a denial of service.
Patch Available
Fix available through Seal Security.
No upgrade required, protect your application instantly.
Fix without upgrading
Score
Severity
Ecosystem
GO
Publish Date
February 16, 2023
Modified Date
May 20, 2024
Score Vector
Affected Versions
