Vulnerabilities > Golang > Image > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-08-02 | CVE-2023-29407 | Excessive Iteration vulnerability in multiple products A maliciously-crafted image can cause excessive CPU consumption in decoding. | 6.5 |
2023-08-02 | CVE-2023-29408 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products The TIFF decoder does not place a limit on the size of compressed tile data. | 6.5 |
2023-02-28 | CVE-2022-41727 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products An attacker can craft a malformed TIFF image which will consume a significant amount of memory when passed to DecodeConfig. | 5.5 |