Skip to content

x/image/tiff: lack of limits on compressed tile data [CVE-2023-29408] #61582

New issue
New issue
Closed
Closed
x/image/tiff: lack of limits on compressed tile data [CVE-2023-29408]#61582
Assignees
neild
Labels
FrozenDueToAgeNeedsFixThe path to resolution is known, but the work has not been done.Security
Milestone
 
Unreleased
@neild

Description

@neild
neild
opened on Jul 25, 2023

The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted image can exploit this to cause a small image (both in terms of pixel width/height, and encodes size) make the decoder decode large amounts of compressed data, consuming excessive memory and CPU.

Thanks to Philippe Antoine (Catena cyber) for reporting this issue.

This is CVE-2023-29408.

This is a PRIVATE issue for CVE-2023-29408, tracked in http://b/279482083 and fixed by http://tg/1944079.

/cc @golang/security and @golang/release

Metadata

Metadata

Assignees

Labels

FrozenDueToAgeNeedsFixThe path to resolution is known, but the work has not been done.Security

Type

No type

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions