Lucene search
+L

16 matches found

astralinux
astralinux
added 2026/06/24 3:11 p.m.7 views

Astra Linux – Vulnerability in imagemagick

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, there was a heap-use-after-free vulnerability in the MSL encoder, where a cloned image was destroyed twice. The MSL encoder does not support writing MSL files, ...

5.3CVSS7AI score0.00193EPSS
Exploits0References2
osv
osv
added 2026/03/12 2:11 p.m.1 views

GHSA-XXW5-M53X-J38C ImageMagick has heap use-after-free in the MSL encoder

A heap-use-after-free vulnerability exists in the MSL encoder, where a cloned image is destroyed twice. The MSL coder does not support writing MSL so the write capability has been removed. SUMMARY: AddressSanitizer: heap-use-after-free MagickCore/image.c:1195 in DestroyImage Shadow bytes around t...

4CVSS5.7AI score0.00193EPSS
Exploits0References4
github
github
added 2026/03/12 2:11 p.m.8 views

ImageMagick has heap use-after-free in the MSL encoder

A heap-use-after-free vulnerability exists in the MSL encoder, where a cloned image is destroyed twice. The MSL coder does not support writing MSL so the write capability has been removed. SUMMARY: AddressSanitizer: heap-use-after-free MagickCore/image.c:1195 in DestroyImage Shadow bytes around t...

5.3CVSS5.7AI score0.00193EPSS
Exploits0References4Affected Software19
osv
osv
added 2026/03/10 7:43 a.m.3 views

DEBIAN-CVE-2026-28688

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap-use-after-free vulnerability exists in the MSL encoder, where a cloned image is destroyed twice. The MSL coder does not support writing MSL so the write...

5.3CVSS7.6AI score0.00193EPSS
Exploits0References1
cvelist
cvelist
added 2026/03/09 9:38 p.m.44 views

CVE-2026-28688 ImageMagick has a heap use-after-free in the MSL encoder

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap-use-after-free vulnerability exists in the MSL encoder, where a cloned image is destroyed twice. The MSL coder does not support writing MSL so the write...

4CVSS0.00193EPSS
Exploits0References1
snyk
snyk
added 2026/03/09 9:38 p.m.6 views

Use After Free

Overview Magick.NET-Q8-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package ar...

5.5CVSS5.8AI score0.00193EPSS
Exploits0References2
snyk
snyk
added 2026/03/09 9:38 p.m.6 views

Use After Free

Overview Magick.NET-Q16-HDRI-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package a...

5.5CVSS5.8AI score0.00193EPSS
Exploits0References2
snyk
snyk
added 2026/03/09 9:38 p.m.7 views

Use After Free

Overview Magick.NET-Q16-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

5.5CVSS5.8AI score0.00193EPSS
Exploits0References2
snyk
snyk
added 2026/03/09 9:38 p.m.7 views

Use After Free

Overview Magick.NET-Q8-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

5.5CVSS5.8AI score0.00193EPSS
Exploits0References2
snyk
snyk
added 2026/03/09 9:38 p.m.3 views

Use After Free

Overview Magick.NET-Q8-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

5.5CVSS5.8AI score0.00193EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2026/03/09 9:38 p.m.3 views

CVE-2026-28688 ImageMagick has a heap use-after-free in the MSL encoder

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap-use-after-free vulnerability exists in the MSL encoder, where a cloned image is destroyed twice. The MSL coder does not support writing MSL so the write...

4CVSS5.7AI score0.00193EPSS
Exploits0References1
snyk
snyk
added 2026/03/09 9:38 p.m.4 views

Use After Free

Overview Magick.NET-Q16-HDRI-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

5.5CVSS5.8AI score0.00193EPSS
Exploits0References2
snyk
snyk
added 2026/03/09 9:38 p.m.4 views

Use After Free

Overview Affected versions of this package are vulnerable to Use After Free in the MSL encoder, when destroying a cloned image. Workaround This vulnerability can be mitigated by disabling the vulnerable encoder by adding to the policy.xml file. Remediation A fix was pushed into the master branch...

5.5CVSS5.7AI score0.00193EPSS
Exploits0References2
alpinelinux
alpinelinux
added 2026/03/09 9:38 p.m.1 views

CVE-2026-28688

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap-use-after-free vulnerability exists in the MSL encoder, where a cloned image is destroyed twice. The MSL coder does not support writing MSL so the write...

5.3CVSS5.7AI score0.00193EPSS
Exploits0
osv
osv
added 2026/03/09 9:38 p.m.10 views

CVE-2026-28688 ImageMagick has a heap use-after-free in the MSL encoder

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap-use-after-free vulnerability exists in the MSL encoder, where a cloned image is destroyed twice. The MSL coder does not support writing MSL so the write...

4CVSS5.7AI score0.00193EPSS
Exploits0References3
snyk
snyk
added 2026/03/09 9:38 p.m.8 views

Use After Free

Overview Magick.NET-Q8-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

5.5CVSS5.8AI score0.00193EPSS
Exploits0References2
Rows per page
Query Builder