Golang Image vulnerabilities

5 known vulnerabilities affecting golang/image.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM4

Vulnerabilities

Page 1 of 1
CVE-2023-29408MEDIUMCVSS 6.5fixed in 0.10.02023-08-02
CVE-2023-29408 [MEDIUM] CWE-770 CVE-2023-29408: The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted i The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted image can exploit this to cause a small image (both in terms of pixel width/height, and encoded size) to make the decoder decode large amounts of compressed data, consuming excessive memory and CPU.
nvd
CVE-2023-29407MEDIUMCVSS 6.5fixed in 0.10.02023-08-02
CVE-2023-29407 [MEDIUM] CWE-834 CVE-2023-29407: A maliciously-crafted image can cause excessive CPU consumption in decoding. A tiled image with a he A maliciously-crafted image can cause excessive CPU consumption in decoding. A tiled image with a height of 0 and a very large width can cause excessive CPU consumption, despite the image size (width * height) appearing to be zero.
nvd
CVE-2022-41727MEDIUMCVSS 5.5fixed in 0.5.02023-02-28
CVE-2022-41727 [MEDIUM] CWE-770 CVE-2022-41727: An attacker can craft a malformed TIFF image which will consume a significant amount of memory when An attacker can craft a malformed TIFF image which will consume a significant amount of memory when passed to DecodeConfig. This could lead to a denial of service.
nvd
CVE-2019-16138CRITICAL≥ 0.10.2, < 0.21.32021-08-25
CVE-2019-16138 [CRITICAL] CWE-416 Use after free in image Use after free in image Affected versions of this crate would call Vec::set_len on an uninitialized vector with user-provided type parameter, in an interface of the HDR image format decoder. They would then also call other code that could panic before initializing all instances. This could run Drop implementations on uninitialized types, equivalent to use-after-free, and allow an attacker arbitrary code execution. Two different fixes w
ghsaosv
CVE-2020-35916MEDIUM≥ 0, < 0.23.122021-08-25
CVE-2020-35916 [MEDIUM] CWE-400 Mutable reference with immutable provenance in image Mutable reference with immutable provenance in image A mutable reference to a struct was constructed by dereferencing a pointer obtained from slice::as_ptr. Instead, slice::as_mut_ptr should have been called on the mutable slice argument. The former performs an implicit reborrow as an immutable shared reference which does not allow writing through the derived pointer.
ghsaosv