CVE-2026-46599 | x-image-tiff up to 0.40.x on Go TIFF Decoder width/height allocation of resources

A vulnerability, which was classified as problematic, has been found in x-image-tiff up to 0.40.x on Go. Affected by this vulnerability is an unknown functionality of the component TIFF Decoder. Performing a manipulation of the argument width/height results in allocation of resources.

This vulnerability is cataloged as CVE-2026-46599. It is possible to initiate the attack remotely. There is no exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More