Lucene search
+L

55 matches found

OSV
OSV
added 5 days ago2 views

SUSE-SU-2026:2877-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2026-53466: integer overflow in the XCF decoder can result in an out-of-bounds read when a crafted image is read bsc1270073. - CVE-2026-53467: allocated memory left unchanged in the MNG decoder can lead to a heap information disclosure...

9.2CVSS6.6AI score0.01849EPSS
Exploits5References85
BDU FSTEC
BDU FSTEC
added 2026/07/08 12:0 a.m.6 views

The vulnerability of the JPEG encoder in the console-based graphic editor ImageMagick allows a hacker to trigger a service failure.

The vulnerability of the JPEG encoder in console-based image editing software ImageMagick relates to the execution of a loop with an unavailable exit condition. Exploiting this vulnerability can allow a malicious actor to cause service failures using a specially created image...

7.8CVSS7.1AI score0.00327EPSS
Exploits0References5Affected Software4
Snyk
Snyk
added 2026/07/01 9:19 p.m.4 views

Heap-based Buffer Overflow

Overview Magick.NET-Q16-HDRI-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this...

6.9CVSS6.2AI score0.00103EPSS
Exploits0References2
OSV
OSV
added 2026/05/26 7:31 p.m.22 views

JLSEC-2026-537

A flaw was found in OpenJPEG’s encoder in the opjdwtcalcexplicitstepsizes function. This flaw allows an attacker who can supply crafted input to decomposition levels to cause a buffer overflow. The highest threat from this vulnerability is to system availability...

5.5CVSS6.2AI score0.0161EPSS
Exploits0References6
Snyk
Snyk
added 2026/05/18 8:37 p.m.12 views

Out-of-bounds Write

Overview Affected versions of this package are vulnerable to Out-of-bounds Write in the JP2 encoder. An attacker can cause a single-byte heap buffer overwrite by specifying certain options. Remediation A fix was pushed into the master branch but not yet published. References - GitHub Advisory -...

6.2CVSS5.9AI score0.00116EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/15 11:25 p.m.9 views

SUSE CVE-2026-40310

ImageMagick is free and open-source software used for editing and manipulating digital images. Versions below both 7.1.2-19 and 6.9.13-44, contain a heap out-of-bounds write in the JP2 encoder with when a user specifies an invalid sampling index. This issue has been fixed in versions 6.9.13-44 an...

5.5CVSS5.7AI score0.00189EPSS
Exploits0References7
Snyk
Snyk
added 2026/04/14 6:51 p.m.7 views

Out-of-bounds Write

Overview Magick.NET-Q8-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

6.8CVSS5.8AI score0.00189EPSS
Exploits0References3
OSV
OSV
added 2026/03/04 5:32 p.m.9 views

CLSA-2026-1772452097 ImageMagick: Fix of 9 CVEs

CVE-2026-25798: fix NULL pointer dereference in ClonePixelCacheRepository - CVE-2026-24481: fix heap information disclosure in PSD handler - CVE-2026-25799: fix division-by-zero in YUV sampling factor validation - CVE-2026-26284: fix out-of-bounds read in PCD Huffman decoder - CVE-2026-25897: fix...

9.8CVSS6.8AI score0.00429EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/02/25 12:24 a.m.5 views

SUSE CVE-2026-26283

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a continue statement in the JPEG extent binary search loop in the jpeg encoder causes an infinite loop when writing persistently fails. An attacker can trigger ...

6.2CVSS6.6AI score0.00327EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/25 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-26283

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a continue statement in...

7.5CVSS6.9AI score0.00327EPSS
Exploits0References2
OSV
OSV
added 2026/02/24 3:16 a.m.3 views

DEBIAN-CVE-2026-26283

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a continue statement in the JPEG extent binary search loop in the jpeg encoder causes an infinite loop when writing persistently fails. An attacker can trigger ...

7.5CVSS6.9AI score0.00327EPSS
Exploits0References1
NVD
NVD
added 2026/02/24 3:16 a.m.11 views

CVE-2026-26283

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a continue statement in the JPEG extent binary search loop in the jpeg encoder causes an infinite loop when writing persistently fails. An attacker can trigger ...

7.5CVSS0.00327EPSS
Exploits0References1
OSV
OSV
added 2026/02/24 3:16 a.m.6 views

UBUNTU-CVE-2026-26283

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a continue statement in the JPEG extent binary search loop in the jpeg encoder causes an infinite loop when writing persistently fails. An attacker can trigger ...

7.5CVSS5.8AI score0.00327EPSS
Exploits0References3
CVE
CVE
added 2026/02/24 1:55 a.m.26 views

CVE-2026-26283

ImageMagick CVE-2026-26283 describes an infinite loop in the JPEG encoder’s binary search for the JPEG extent, caused by a continue statement. This can trigger 100% CPU usage and a denial of service when processing crafted images. A patch has been applied in versions 7.1.2-15 and 6.9.13-40, mitig...

7.5CVSS5.5AI score0.00327EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/24 1:55 a.m.2 views

CVE-2026-26283 ImageMagick has possible infinite loop in JPEG encoder when using `jpeg:extent`

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a continue statement in the JPEG extent binary search loop in the jpeg encoder causes an infinite loop when writing persistently fails. An attacker can trigger ...

6.2CVSS5.5AI score0.00327EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/02/24 1:55 a.m.5 views

CVE-2026-26283

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a continue statement in the JPEG extent binary search loop in the jpeg encoder causes an infinite loop when writing persistently fails. An attacker can trigger ...

7.5CVSS5.6AI score0.00327EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/02/24 1:55 a.m.5 views

CVE-2026-26283

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a continue statement in the JPEG extent binary search loop in the jpeg encoder causes an infinite loop when writing persistently fails. An attacker can trigger ...

7.5CVSS6.9AI score0.00327EPSS
Exploits0
EUVD
EUVD
added 2026/02/24 1:55 a.m.9 views

EUVD-2026-7414

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a continue statement in the JPEG extent binary search loop in the jpeg encoder causes an infinite loop when writing persistently fails. An attacker can trigger ...

7.5CVSS5.4AI score0.00327EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/02/24 12:0 a.m.7 views

CVE-2026-26283

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a continue statement in the JPEG extent binary search loop in the jpeg encoder causes an infinite loop when writing persistently fails. An attacker can trigger ...

7.5CVSS6.5AI score0.00327EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/24 12:0 a.m.11 views

ImageMagick 安全漏洞

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It can read, convert, and write images in various formats. Versions of ImageMagick prior to 7.1.2-15 and 6.9.13-40 contained security vulnerabilities. These vulnerabilities stemmed from the continu...

7.5CVSS6.9AI score0.00327EPSS
Exploits0References2
Rows per page
Query Builder