CVE-2024-24792

June 27, 2024, 7:25 p.m.

Product(s) Impacted

Go programming language

Description

Parsing a corrupt or malicious image with invalid color indices can cause a panic.

Weaknesses

Date

Published: June 27, 2024, 6:15 p.m.

Last Modified: June 27, 2024, 7:25 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

security@golang.org

References

https://go.dev/cl/588115
security@golang.org
https://go.dev/issue/67624
security@golang.org