diff --git a/.changeset/fix-tiff-oom-cve.md b/.changeset/fix-tiff-oom-cve.md
new file mode 100644
index 000000000..1ba327664
--- /dev/null
+++ b/.changeset/fix-tiff-oom-cve.md
@@ -0,0 +1,5 @@
+---
+'@cloudflare/sandbox': patch
+---
+
+Upgrade Go toolchain to 1.25 and update dependencies in the desktop container variant, including a security fix for image processing (CVE-2026-33809).
diff --git a/packages/sandbox-container/native/desktop-wrapper/go.mod b/packages/sandbox-container/native/desktop-wrapper/go.mod
index cd9b6fdd0..37a788f27 100644
--- a/packages/sandbox-container/native/desktop-wrapper/go.mod
+++ b/packages/sandbox-container/native/desktop-wrapper/go.mod
@@ -1,8 +1,6 @@
 module github.com/cloudflare/sandbox-sdk/desktop-wrapper
 
-go 1.24.0
-
-toolchain go1.24.13
+go 1.25.0
 
 require github.com/go-vgo/robotgo v1.0.1
 
@@ -29,6 +27,6 @@ require (
 	github.com/vcaesar/tt v0.20.1 // indirect
 	github.com/yusufpapurcu/wmi v1.2.4 // indirect
 	golang.org/x/exp v0.0.0-20251125195548-87e1e737ad39 // indirect
-	golang.org/x/image v0.33.0 // indirect
+	golang.org/x/image v0.38.0 // indirect
 	golang.org/x/sys v0.41.0 // indirect
 )
diff --git a/packages/sandbox-container/native/desktop-wrapper/go.sum b/packages/sandbox-container/native/desktop-wrapper/go.sum
index c06903d0a..592f4341a 100644
--- a/packages/sandbox-container/native/desktop-wrapper/go.sum
+++ b/packages/sandbox-container/native/desktop-wrapper/go.sum
@@ -62,8 +62,8 @@ github.com/yusufpapurcu/wmi v1.2.4 h1:zFUKzehAFReQwLys1b/iSMl+JQGSCSjtVqQn9bBrPo
 github.com/yusufpapurcu/wmi v1.2.4/go.mod h1:SBZ9tNy3G9/m5Oi98Zks0QjeHVDvuK0qfxQmPyzfmi0=
 golang.org/x/exp v0.0.0-20251125195548-87e1e737ad39 h1:DHNhtq3sNNzrvduZZIiFyXWOL9IWaDPHqTnLJp+rCBY=
 golang.org/x/exp v0.0.0-20251125195548-87e1e737ad39/go.mod h1:46edojNIoXTNOhySWIWdix628clX9ODXwPsQuG6hsK0=
-golang.org/x/image v0.33.0 h1:LXRZRnv1+zGd5XBUVRFmYEphyyKJjQjCRiOuAP3sZfQ=
-golang.org/x/image v0.33.0/go.mod h1:DD3OsTYT9chzuzTQt+zMcOlBHgfoKQb1gry8p76Y1sc=
+golang.org/x/image v0.38.0 h1:5l+q+Y9JDC7mBOMjo4/aPhMDcxEptsX+Tt3GgRQRPuE=
+golang.org/x/image v0.38.0/go.mod h1:/3f6vaXC+6CEanU4KJxbcUZyEePbyKbaLoDOe4ehFYY=
 golang.org/x/sys v0.0.0-20190916202348-b4ddaad3f8a3/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20201204225414-ed752295db88/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.1.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
diff --git a/packages/sandbox/Dockerfile b/packages/sandbox/Dockerfile
index ce53267d4..b73c4d2b8 100644
--- a/packages/sandbox/Dockerfile
+++ b/packages/sandbox/Dockerfile
@@ -222,7 +222,7 @@ ENTRYPOINT ["/container-server/sandbox"]
 # ============================================================================
 # Desktop variant — full Linux desktop with robotgo native control
 # ============================================================================
-FROM golang:1.24-bookworm AS go-builder
+FROM golang:1.25-bookworm AS go-builder
 
 RUN mkdir -p /usr/local/share/ca-certificates
 RUN --mount=type=secret,id=wrangler_ca \