A maliciously crafted TIFF file can cause image decoding to attempt to allocate up 4GiB of memory, causing either excessive resource consumption or an out-of-memory error.
CVSS Score
5.3
EPSS Score
0.0
Published
2026-03-25
An attacker can craft a malformed TIFF image which will consume a significant amount of memory when passed to DecodeConfig. This could lead to a denial of service.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-02-28