25 matches found
CLSA-2025-1762544876 Fix CVE(s): CVE-2025-55004
SECURITY UPDATE: heap-buffer overflow read in MNG - debian/patches/CVE-2025-55004.patch: Fix heap buffer overflow issue in MNG magnification with alpha channel - debian/patches/fix-missing-cast-function.patch: Fix missing CastDoubleToLong function failing build - CVE-2025-55004...
CLSA-2025-1759331689 Fix CVE(s): CVE-2025-55154
SECURITY UPDATE: unsafe magnified size calculations leading to memory corruption - debian/patches/CVE-2025-55154.patch: Fix integer overflow in PNG image magnification causing memory corruption - CVE-2025-55154...
Heap Buffer Overflow
ImageMagick is vulnerable to Heap Buffer Overflow. The vulnerability is due to improper memory handling because images with separate alpha channels during magnification in ReadOneMNGImage can leak memory contents into the output image...
CLSA-2025-1758195721 ImageMagick: Fix of 4 CVEs
CVE-2025-55154: fix integer overflows in MNG magnification - CVE-2025-55212: fix division by zero in ThumbnailImage - CVE-2025-57803: fix 32-bit integer overflow when writing BMP scanline stride - CVE-2025-55298: fix format string bug leading to RCE or heap overflow...
imagemagick: ImageMagick: integer overflows in MNG magnification
An integer overflow flaw has been discovered in ImageMagick. The magnified size calculations in ReadOneMNGIMage in coders/png.c are unsafe and can overflow, leading to memory corruption...
Important: Red Hat Security Advisory: ImageMagick security update
An update for ImageMagick is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...
RHEL 7 : ImageMagick (RHSA-2025:15666)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:15666 advisory. ImageMagick is an image display and manipulation tool for the X Window System that can read and write multiple image formats. Security Fixes:...
Linux Distros Unpatched Vulnerability : CVE-2025-55004
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, ImageMagick is vulnerable to heap-buffe...
GHSA-QP29-WXP5-WH82 imagemagick: integer overflows in MNG magnification
Vulnerability Details The magnified size calculations in ReadOneMNGIMage in coders/png.c are unsafe and can overflow, leading to memory corruption. The source snippet below is heavily abbreviated due to the size of the function, but hopefully the important points are captured. c static Image...
imagemagick: integer overflows in MNG magnification
Vulnerability Details The magnified size calculations in ReadOneMNGIMage in coders/png.c are unsafe and can overflow, leading to memory corruption. The source snippet below is heavily abbreviated due to the size of the function, but hopefully the important points are captured. c static Image...
GHSA-CJC8-G9W8-CHFW imagemagick: heap-buffer overflow read in MNG magnification with alpha
Vulnerability Details When performing image magnification in ReadOneMNGIMage in coders/png.c, there is an issue around the handling of images with separate alpha channels. When loading an image with a color type that implies a separate alpha channel ie. jngcolortype = 12, we will load the alpha...
imagemagick: heap-buffer overflow read in MNG magnification with alpha
Vulnerability Details When performing image magnification in ReadOneMNGIMage in coders/png.c, there is an issue around the handling of images with separate alpha channels. When loading an image with a color type that implies a separate alpha channel ie. jngcolortype = 12, we will load the alpha...
ImageMagick Input Validation Error Vulnerability (CNVD-2025-19250)
ImageMagick is ImageMagick open source suite of open source image processing software that can read, convert or write images in a variety of formats. ImageMagick suffers from an input validation error vulnerability that stems from an insecure magnification size calculation in ReadOneMNGIMage, whi...
DEBIAN-CVE-2025-55004
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, ImageMagick is vulnerable to heap-buffer overflow read around the handling of images with separate alpha channels when performing image magnification in ReadOneMNGIMage. This c...
CVE-2025-55004
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, ImageMagick is vulnerable to heap-buffer overflow read around the handling of images with separate alpha channels when performing image magnification in ReadOneMNGIMage. This c...
CVE-2025-55154 ImageMagick: integer overflows in MNG magnification
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-27 and 7.1.2-1, the magnified size calculations in ReadOneMNGIMage in coders/png.c are unsafe and can overflow, leading to memory corruption. This issue has been patched in...
CVE-2025-55154 ImageMagick: integer overflows in MNG magnification
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-27 and 7.1.2-1, the magnified size calculations in ReadOneMNGIMage in coders/png.c are unsafe and can overflow, leading to memory corruption. This issue has been patched in...
CVE-2025-55004 ImageMagick: heap-buffer overflow read in MNG magnification with alpha
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, ImageMagick is vulnerable to heap-buffer overflow read around the handling of images with separate alpha channels when performing image magnification in ReadOneMNGIMage. This c...
CVE-2025-55004 ImageMagick: heap-buffer overflow read in MNG magnification with alpha
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, ImageMagick is vulnerable to heap-buffer overflow read around the handling of images with separate alpha channels when performing image magnification in ReadOneMNGIMage. This c...
CVE-2025-55004 ImageMagick: heap-buffer overflow read in MNG magnification with alpha
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, ImageMagick is vulnerable to heap-buffer overflow read around the handling of images with separate alpha channels when performing image magnification in ReadOneMNGIMage. This c...