CVE-2023-29407 — CVSS 6.5 (medium): A maliciously-crafted image can cause excessive CPU consumption in decoding. A tiled image with a height of 0 and a very large width can…
CVE-2023-29408 — CVSS 6.5 (medium): The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted image can exploit this to cause a small…
CVE-2022-41727 — CVSS 5.5 (medium): An attacker can craft a malformed TIFF image which will consume a significant amount of memory when passed to DecodeConfig. This could lead…