Vulnerability in Golang.org/x/image Golang.org/x/image/tiff
CVE-2026-33809
A maliciously crafted TIFF file can cause image decoding to attempt to allocate up 4GiB of memory, causing either excessive resource consumption or an out-of-memory error.
EPSS: 0.000 (2.1th percentile) — read the EPSS interpretation.
Affected products
- Golang.org/x/image Golang.org/x/image/tiff — versions 0