Medium severity6.1NVD Advisory· Published Apr 21, 2026· Updated May 13, 2026
CVE-2026-33812
CVE-2026-33812
Description
Parsing a malicious font file can cause excessive memory allocation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
51- osv-coords50 versionspkg:apk/chainguard/bentopkg:apk/chainguard/bento-fipspkg:apk/chainguard/cgpkg:apk/chainguard/chainctlpkg:apk/chainguard/chainctl-fipspkg:apk/chainguard/gatuspkg:apk/chainguard/gatus-fipspkg:apk/chainguard/giteapkg:apk/chainguard/gitea-fipspkg:apk/chainguard/gitlab-workhorse-ce-18.10pkg:apk/chainguard/gitlab-workhorse-ce-18.11pkg:apk/chainguard/gitlab-workhorse-ce-18.9pkg:apk/chainguard/gitlab-workhorse-ce-fips-18.10pkg:apk/chainguard/gitlab-workhorse-ce-fips-18.11pkg:apk/chainguard/gitlab-workhorse-ce-fips-18.9pkg:apk/chainguard/glabpkg:apk/chainguard/kubescapepkg:apk/chainguard/kubescape-serverpkg:apk/chainguard/kubescape-server-fipspkg:apk/chainguard/kubescape-server-fips-downloaderpkg:apk/chainguard/listmonkpkg:apk/chainguard/mattermost-10.11pkg:apk/chainguard/mattermost-11.4pkg:apk/chainguard/mattermost-11.5pkg:apk/chainguard/mattermost-11.6pkg:apk/chainguard/mattermost-11.7pkg:apk/chainguard/mattermost-fips-10.11pkg:apk/chainguard/mattermost-fips-11.1pkg:apk/chainguard/mattermost-fips-11.4pkg:apk/chainguard/mattermost-fips-11.5pkg:apk/chainguard/mattermost-fips-11.6pkg:apk/chainguard/mattermost-fips-11.7pkg:apk/chainguard/ollamapkg:apk/chainguard/ollama-fipspkg:apk/chainguard/seaweedfs-operator-fipspkg:apk/chainguard/seaweedfs-rocksdbpkg:apk/chainguard/seaweedfs-rocksdb-fipspkg:apk/chainguard/tailscalepkg:apk/wolfi/bentopkg:apk/wolfi/gatuspkg:apk/wolfi/giteapkg:apk/wolfi/glabpkg:apk/wolfi/kubescapepkg:apk/wolfi/mattermost-10.11pkg:apk/wolfi/mattermost-11.4pkg:apk/wolfi/mattermost-11.5pkg:apk/wolfi/mattermost-11.6pkg:apk/wolfi/mattermost-11.7pkg:apk/wolfi/ollamapkg:apk/wolfi/tailscale
< 0+ 49 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 11.1.3-r6
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
Patches
Vulnerability mechanics
References
3- go.dev/cl/761180nvdPatch
- pkg.go.dev/vuln/GO-2026-4962nvdVendor Advisory
- go.dev/issue/78382nvdIssue Tracking
News mentions
0No linked articles in our index yet.