Lucene search
+L

22 matches found

CVE
CVE
added 2026/06/30 10:8 p.m.18 views

CVE-2026-56361

ImageMagick before 7.1.2-19 contains an off-by-one error in morphology validation that allows out-of-bounds heap buffer reads. The vulnerability can be triggered by incorrect morphology parameters, causing heap buffer overflow and single-pixel memory access violations. Documented across multiple ...

7.1CVSS6AI score0.00128EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/30 10:8 p.m.34 views

CVE-2026-56361 ImageMagick - Heap Buffer Overflow via Off-by-One in Morphology Processing

ImageMagick before 7.1.2-19 contains an off-by-one error in morphology validation allowing out-of-bounds heap buffer reads. Attackers can trigger heap buffer overflow by providing incorrect morphology parameters causing single pixel memory access violations...

4.8CVSS0.00128EPSS
Exploits0References2
OSV
OSV
added 2026/06/30 10:8 p.m.3 views

CVE-2026-56361 ImageMagick - Heap Buffer Overflow via Off-by-One in Morphology Processing

ImageMagick before 7.1.2-19 contains an off-by-one error in morphology validation allowing out-of-bounds heap buffer reads. Attackers can trigger heap buffer overflow by providing incorrect morphology parameters causing single pixel memory access violations...

4.8CVSS6.1AI score0.00128EPSS
Exploits0References4
Snyk
Snyk
added 2026/04/14 11:31 p.m.7 views

Off-by-one Error

Overview Magick.NET-Q16-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

7.1CVSS5.8AI score0.00128EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/04/14 11:31 p.m.11 views

ImageMagick has has an off-by-one origin validation in allows out-of-bounds read in morphology processing

An incorrect morphology would allow an out of bounds read of a single pixel. ==1200284==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x5100000002d0 at pc 0x59e28e60c27a bp 0x7fff047fd8e0 sp 0x7fff047fd8d0 READ of size 4 at 0x5100000002d0 thread T0...

5.8AI score
Exploits0References2Affected Software18
Snyk
Snyk
added 2026/04/14 11:31 p.m.6 views

Off-by-one Error

Overview Magick.NET-Q16-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package a...

7.1CVSS5.8AI score0.00128EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/14 11:31 p.m.6 views

Off-by-one Error

Overview Magick.NET-Q16-HDRI-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.1CVSS5.8AI score0.00128EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/14 11:31 p.m.7 views

Off-by-one Error

Overview Magick.NET-Q16-HDRI-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

7.1CVSS5.8AI score0.00128EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/14 11:31 p.m.7 views

Off-by-one Error

Overview Magick.NET-Q8-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

7.1CVSS5.8AI score0.00128EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/14 11:31 p.m.9 views

Off-by-one Error

Overview Magick.NET-Q8-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.1CVSS5.8AI score0.00128EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/14 11:31 p.m.7 views

Off-by-one Error

Overview Magick.NET-Q16-HDRI-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this...

7.1CVSS5.8AI score0.00128EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/14 11:31 p.m.6 views

Off-by-one Error

Overview Magick.NET-Q16-HDRI-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package a...

7.1CVSS5.8AI score0.00128EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/14 11:31 p.m.7 views

Off-by-one Error

Overview Magick.NET-Q8-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package ar...

7.1CVSS5.8AI score0.00128EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/14 11:31 p.m.7 views

Off-by-one Error

Overview Magick.NET-Q8-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.1CVSS5.8AI score0.00128EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/14 11:31 p.m.9 views

Off-by-one Error

Overview Magick.NET-Q16-HDRI-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.1CVSS5.8AI score0.00128EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/14 11:31 p.m.7 views

Off-by-one Error

Overview Magick.NET-Q16-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.1CVSS5.8AI score0.00128EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/14 11:31 p.m.12 views

Off-by-one Error

Overview Magick.NET-Q8-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.1CVSS5.8AI score0.00128EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/14 11:31 p.m.7 views

Off-by-one Error

Overview Magick.NET-Q8-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.1CVSS5.8AI score0.00128EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/14 11:31 p.m.8 views

Off-by-one Error

Overview Magick.NET-Q16-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.1CVSS5.8AI score0.00128EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/14 11:31 p.m.7 views

Off-by-one Error

Overview Affected versions of this package are vulnerable to Off-by-one Error via the morphology processing. An attacker can cause a denial of service by triggering an out-of-bounds read through the use of a specially crafted morphology operation. Remediation A fix was pushed into the master bran...

7.1CVSS5.8AI score0.00128EPSS
Exploits0References3
Rows per page
Query Builder