Astra Linux - уязвимость в imagemagick

A heap use-after-free flaw was discovered in the coder/bmp.c file of ImageMagick...

4coders-commons (>=0.0.1 <=0.0.2), @11ty/eleventy (=0.3.3) +3647 more potentially affected by CVE-2026-33916 via handlebars (>=4.0.0 <=4.7.8)

handlebars NPM version =4.0.0, =0.0.1, =0.1.0, =0.1.0, =0.0.11, =0.0.52, =0.1.0, =0.0.72, =0.1.0, =1.1.1, =0.0.0-3b548b7bf6ff6554f724240da3a11be924237e6c, =1.16.0, =1.16.0, =1.16.0, =2.4.4 and more Source cves: CVE-2026-33916 Source advisory: SNYK:JS-HANDLEBARS-15789775...

GHSA-WFX3-6G53-9FGC ImageMagick: Memory Leak in multiple coders that write raw pixel data

A memory leak vulnerability exists in multiple coders that write raw pixel data where an object is not freed. Direct leak of 160 bytes in 1 objects allocated from:...

ImageMagick: Memory Leak in multiple coders that write raw pixel data

A memory leak vulnerability exists in multiple coders that write raw pixel data where an object is not freed. Direct leak of 160 bytes in 1 objects allocated from:...

ImageMagick has memory leak in msl encoder

Memory leak exists in coders/msl.c. In the WriteMSLImage function of the msl.c file, resources are allocated. But the function returns early without releasing these allocated resources. ==78983== Memcheck, a memory error detector ==78983== Copyright C 2002-2022, and GNU GPL'd, by Julian Seward et...

GHSA-JV4P-GJWQ-9R2J ImageMagick: Out of bounds read in multiple coders read raw pixel data

A heap buffer over-read vulnerability exists in multiple raw image format handles. The vulnerability occurs when processing images with -extract dimensions larger than -size dimensions, causing out-of-bounds memory reads from a heap-allocated buffer...

CVE-2026-25969

ImageMagick is affected by a memory leak in the ashlar coder (coders/ashlar.c). The WriteASHLARImage function allocates a structure, and if an exception is thrown, the allocated memory is not released, causing a memory leak. A patch addressing this issue is present in version 7.1.2-15. The CVE de...

CVE-2026-25797 ImageMagick vulnerable to Code injection via PostScript header in ps coders

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the ps coders, responsible for writing PostScript files, fails to sanitize the input before writing it into the PostScript header. An attacker can provide a...

CVE-2026-25797 ImageMagick vulnerable to Code injection via PostScript header in ps coders

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the ps coders, responsible for writing PostScript files, fails to sanitize the input before writing it into the PostScript header. An attacker can provide a...

CVE-2026-25576 ImageMagick: Out of bounds read in multiple coders read raw pixel data

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in multiple raw image format handles. The vulnerability occurs when processing images with -extract dimensions larg...

CVE-2026-25576

CVE-2026-25576 affects ImageMagick. A heap buffer over-read occurs in multiple raw image format handles when processing images with -extract dimensions larger than -size, causing out-of-bounds reads from a heap-allocated buffer. This vulnerability is present in versions older than 7.1.2-15 and 6....

ImageMagick 安全漏洞

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It can read, convert, and write images in various formats. Versions of ImageMagick prior to 7.1.2-15 and 6.9.13-40 contained security vulnerabilities. These vulnerabilities were caused by a memory...

ImageMagick 缓冲区错误漏洞

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It can read, convert, and write images in various formats. Versions of ImageMagick prior to 7.1.2-15 and 6.9.13-40 contained a buffer error vulnerability. This vulnerability stemmed from an...

CVE-2026-25385

Server-Side Request Forgery SSRF vulnerability in KaizenCoders URL Shortify url-shortify allows Server Side Request Forgery.This issue affects URL Shortify: from n/a through = 1.12.3...

CLSA-2026-1771498382 ImageMagick: Fix of CVE-2025-68618

CVE-2025-68618: added recursion depth check in MSL and SVG coders - Check that image exists before we destroy it...

CVE-2026-25392

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in KaizenCoders Update URLs - Quick and Easy way to search old links and replace them with new links in WordPress update-urls allows Phishing.This issue affects Update URLs - Quick and Easy way to search old links and replace them wi...

CVE-2026-25392

CVE-2026-25392 is an Open Redirect vulnerability affecting the WordPress plugin Update URLs (KaizenCoders) in versions up to 1.4.1. The issue enables redirection to untrusted sites, with phishing potential as described in multiple sources. Concrete affected component: the Update URLs plugin; root...

CVE-2026-25385

Server-Side Request Forgery SSRF vulnerability in KaizenCoders URL Shortify url-shortify allows Server Side Request Forgery.This issue affects URL Shortify: from n/a through = 1.12.3...

EUVD-2017-3070

Malware in sbrugna...

EUVD-2017-4658

Malware in sbrugna...