4 matches found
CVE-2023-36308
disintegration Imaging 1.6.2 allows attackers to cause a panic because of an integer index out of range during a Grayscale call via a crafted TIFF file to the scan function of scanner.go. NOTE: it is unclear whether there are common use cases in which this panic could have any security consequenc...
CVE-2023-36308
disintegration Imaging 1.6.2 allows attackers to cause a panic because of an integer index out of range during a Grayscale call via a crafted TIFF file to the scan function of scanner.go. NOTE: it is unclear whether there are common use cases in which this panic could have any security consequenc...
Design/Logic Flaw
DISPUTED disintegration Imaging 1.6.2 allows attackers to cause a panic because of an integer index out of range during a Grayscale call via a crafted TIFF file to the scan function of scanner.go. NOTE: it is unclear whether there are common use cases in which this panic could have any security...
CVE-2023-36308
The CVE-2023-36308 entry concerns disintegration Imaging 1.6.2. Affected component: the scanner.go scan function, specifically the Grayscale path when processing crafted TIFF files. Root cause: an integer index out of range leads to a panic. Impact: the description notes it is unclear whether thi...