Parsing a malicious font file can cause excessive memory allocation.
CVSS Score
6.1
EPSS Score
0.0
Published
2026-04-21
Parsing a WEBP image with an invalid, large size panics on 32-bit platforms.
CVSS Score
7.5
EPSS Score
0.001
Published
2026-04-21
A maliciously-crafted image can cause excessive CPU consumption in decoding. A tiled image with a height of 0 and a very large width can cause excessive CPU consumption, despite the image size (width * height) appearing to be zero.
CVSS Score
6.5
EPSS Score
0.003
Published
2023-08-02
The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted image can exploit this to cause a small image (both in terms of pixel width/height, and encoded size) to make the decoder decode large amounts of compressed data, consuming excessive memory and CPU.
CVSS Score
6.5
EPSS Score
0.005
Published
2023-08-02