Lucene search
+L

48 matches found

OSV
OSV
added 2026/07/08 2:17 p.m.2 views

DEBIAN-CVE-2026-56362

ImageMagick before 7.1.2-15 contains a heap-buffer-overflow read vulnerability in GetPixelIndex caused by OpenPixelCache updating image channel metadata before pixel cache memory allocation. Attackers can trigger memory and disk allocation failures to cause a heap-buffer-overflow read affecting a...

4.2CVSS6.1AI score0.00188EPSS
Exploits0References1
NVD
NVD
added 2026/07/08 2:17 p.m.8 views

CVE-2026-56362

ImageMagick before 7.1.2-15 contains a heap-buffer-overflow read vulnerability in GetPixelIndex caused by OpenPixelCache updating image channel metadata before pixel cache memory allocation. Attackers can trigger memory and disk allocation failures to cause a heap-buffer-overflow read affecting a...

4.2CVSS0.00188EPSS
Exploits0References2
EUVD
EUVD
added 2026/07/08 1:49 p.m.7 views

EUVD-2026-42259

ImageMagick before 7.1.2-15 contains a heap-buffer-overflow read vulnerability in GetPixelIndex caused by OpenPixelCache updating image channel metadata before pixel cache memory allocation. Attackers can trigger memory and disk allocation failures to cause a heap-buffer-overflow read affecting a...

3.3CVSS6AI score0.00188EPSS
Exploits0References2
CVE
CVE
added 2026/07/08 1:49 p.m.19 views

CVE-2026-56362

CVE-2026-56362 affects ImageMagick prior to 7.1.2-15 with a heap-buffer-overflow read in GetPixelIndex caused by OpenPixelCache updating image channel metadata before memory allocation. Multiple sources (NVD, Red Hat, Debian security tracker, Alpine, CIRCL, PT Security, Luke/Snyk feeds) corrobora...

4.2CVSS6AI score0.00188EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/07/08 1:49 p.m.6 views

CVE-2026-56362

ImageMagick before 7.1.2-15 contains a heap-buffer-overflow read vulnerability in GetPixelIndex caused by OpenPixelCache updating image channel metadata before pixel cache memory allocation. Attackers can trigger memory and disk allocation failures to cause a heap-buffer-overflow read affecting a...

4.2CVSS6AI score0.00188EPSS
Exploits0
OSV
OSV
added 2026/07/08 1:49 p.m.4 views

CVE-2026-56362 ImageMagick - Heap-buffer-overflow Read in GetPixelIndex via OpenPixelCache Metadata Desynchronization

ImageMagick before 7.1.2-15 contains a heap-buffer-overflow read vulnerability in GetPixelIndex caused by OpenPixelCache updating image channel metadata before pixel cache memory allocation. Attackers can trigger memory and disk allocation failures to cause a heap-buffer-overflow read affecting a...

2.1CVSS6.1AI score0.00188EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.10 views

Astra Linux – Vulnerability in imagemagick

An integer overflow issue was discovered in ImageMagick’s ExportIndexQuantum function in MagickCore/quantum-export.c. Function calls to GetPixelIndex could result in values that are outside the representable range for ‘unsigned char’. When ImageMagick processes a specially crafted PDF file, this...

5.5CVSS6.9AI score0.00365EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/25 7:15 p.m.6 views

Out-of-bounds Read

Overview Magick.NET-Q16-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package a...

3.3CVSS6.1AI score
Exploits0References3
Snyk
Snyk
added 2026/02/25 7:15 p.m.5 views

Out-of-bounds Read

Overview Magick.NET-Q8-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

3.3CVSS6.1AI score
Exploits0References3
Snyk
Snyk
added 2026/02/25 7:15 p.m.6 views

Out-of-bounds Read

Overview Magick.NET-Q8-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

3.3CVSS6.1AI score
Exploits0References3
Snyk
Snyk
added 2026/02/25 7:15 p.m.4 views

Out-of-bounds Read

Overview Magick.NET-Q16-HDRI-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

3.3CVSS6.1AI score
Exploits0References3
Snyk
Snyk
added 2026/02/25 7:15 p.m.6 views

Out-of-bounds Read

Overview Magick.NET-Q16-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

3.3CVSS6.1AI score
Exploits0References3
Snyk
Snyk
added 2026/02/25 7:15 p.m.4 views

Out-of-bounds Read

Overview Magick.NET-Q16-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

3.3CVSS6.1AI score
Exploits0References3
Snyk
Snyk
added 2026/02/25 7:15 p.m.6 views

Out-of-bounds Read

Overview Magick.NET-Q16-HDRI-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this...

3.3CVSS6.1AI score
Exploits0References3
Snyk
Snyk
added 2026/02/25 7:15 p.m.5 views

Out-of-bounds Read

Overview Magick.NET-Q8-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

3.3CVSS6.1AI score
Exploits0References3
OSV
OSV
added 2026/02/25 7:15 p.m.5 views

GHSA-GQ5V-QF8Q-FP77 ImageMagick: Heap-based Buffer Overflow in GetPixelIndex due to metadata-cache desynchronization

OpenPixelCache updates image channel metadata before attempting pixel cache memory allocation. When both memory and disk allocation fail a heap-buffer-overflow read in occurs in any writer that calls GetPixelIndex...

3.3CVSS5.5AI score0.00188EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/02/25 7:15 p.m.7 views

ImageMagick: Heap-based Buffer Overflow in GetPixelIndex due to metadata-cache desynchronization

OpenPixelCache updates image channel metadata before attempting pixel cache memory allocation. When both memory and disk allocation fail a heap-buffer-overflow read in occurs in any writer that calls GetPixelIndex...

5.3AI score
Exploits0References3Affected Software19
OSV
OSV
added 2026/02/24 2:16 a.m.7 views

DEBIAN-CVE-2026-25898

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the UIL and XPM image encoder do not validate the pixel index value returned by GetPixelIndex before using it as an array subscript. In HDRI builds, Quantum is ...

9.1CVSS8.1AI score0.00348EPSS
Exploits0References1
NVD
NVD
added 2026/02/24 2:16 a.m.9 views

CVE-2026-25898

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the UIL and XPM image encoder do not validate the pixel index value returned by GetPixelIndex before using it as an array subscript. In HDRI builds, Quantum is ...

9.1CVSS0.00348EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/24 12:0 a.m.10 views

ImageMagick 缓冲区错误漏洞

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It can read, convert, and write images in various formats. Versions of ImageMagick prior to 7.1.2-15 and 6.9.13-40 contained a buffer error vulnerability. This vulnerability stemmed from the UIL an...

9.1CVSS7.1AI score0.00348EPSS
Exploits0References2
Rows per page
Query Builder