Lucene search
K

143 matches found

RedhatCVE
RedhatCVE
added 2026/07/06 9:34 a.m.6 views

CVE-2026-56364

A Denial of Service DoS vulnerability exists in ImageMagick. An attacker with write access to the OpenCL cache directory can exhaust system memory and crash the application by placing a maliciously crafted file. Mitigation To mitigate this, restrict write access to the OpenCL cache directory to...

1.9CVSS6AI score0.00123EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2026/07/02 6:35 a.m.5 views

SUSE CVE-2026-56364

ImageMagick before 7.1.2-13 contains a memory leak vulnerability in LoadOpenCLDeviceBenchmark function when parsing malformed OpenCL device profile XML files with unclosed device elements. Attackers with write access to the OpenCL cache directory can place malicious XML files to exhaust memory an...

1.9CVSS6AI score0.00123EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/07/01 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-56364

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick before 7.1.2-13 contains a memory leak vulnerability in LoadOpenCLDeviceBenchmark function when parsing malformed OpenCL device profile XML files wi...

1.9CVSS6.1AI score0.00123EPSS
Exploits1References2
OSV
OSV
added 2026/06/30 11:17 p.m.4 views

DEBIAN-CVE-2026-56364

ImageMagick before 7.1.2-13 contains a memory leak vulnerability in LoadOpenCLDeviceBenchmark function when parsing malformed OpenCL device profile XML files with unclosed device elements. Attackers with write access to the OpenCL cache directory can place malicious XML files to exhaust memory an...

1.8CVSS5.8AI score0.00123EPSS
Exploits1References1
CVE
CVE
added 2026/06/30 10:8 p.m.17 views

CVE-2026-56364

ImageMagick before 7.1.2-13 contains a memory leak in LoadOpenCLDeviceBenchmark() when parsing malformed OpenCL device profile XML files with unclosed device elements. With write access to the OpenCL cache directory, an attacker can place crafted XML files to exhaust memory, causing denial of ser...

1.9CVSS5.8AI score0.00123EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2026/06/30 10:8 p.m.28 views

CVE-2026-56364 ImageMagick - Memory Leak in LoadOpenCLDeviceBenchmark() via Malformed XML

ImageMagick before 7.1.2-13 contains a memory leak vulnerability in LoadOpenCLDeviceBenchmark function when parsing malformed OpenCL device profile XML files with unclosed device elements. Attackers with write access to the OpenCL cache directory can place malicious XML files to exhaust memory an...

1.9CVSS0.00123EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2026/06/30 10:8 p.m.7 views

CVE-2026-56364

ImageMagick before 7.1.2-13 contains a memory leak vulnerability in LoadOpenCLDeviceBenchmark function when parsing malformed OpenCL device profile XML files with unclosed device elements. Attackers with write access to the OpenCL cache directory can place malicious XML files to exhaust memory an...

1.9CVSS5.8AI score0.00123EPSS
Exploits1
OSV
OSV
added 2026/06/30 10:8 p.m.2 views

CVE-2026-56364 ImageMagick - Memory Leak in LoadOpenCLDeviceBenchmark() via Malformed XML

ImageMagick before 7.1.2-13 contains a memory leak vulnerability in LoadOpenCLDeviceBenchmark function when parsing malformed OpenCL device profile XML files with unclosed device elements. Attackers with write access to the OpenCL cache directory can place malicious XML files to exhaust memory an...

1.8CVSS6AI score0.00123EPSS
Exploits1References5
vulnersOsv
vulnersOsv
added 2026/03/03 11:19 p.m.7 views

vantuz (>=3.3.2 <=3.3.7) potentially affected by unknown CVE via openclaw (=0.0.1)

openclaw NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on openclaw and may be impacted: - vantuz =3.3.2, =3.3.7 Source cves: unknown CVE Source advisory: OSV:GHSA-2CH6-X3G4-7759...

5.8AI score
Exploits0
Veracode
Veracode
added 2026/01/29 11:57 a.m.8 views

Memory Leak

ImageMagick is vulnerable to a memory leak. The vulnerability is due to improper handling of malformed OpenCL device profile XML files in the LoadOpenCLDeviceBenchmark function, which fails to free allocated string memory when elements are not properly closed, allowing an attacker to trigger memo...

5.9AI score
Exploits0
Snyk
Snyk
added 2026/01/21 1:6 a.m.6 views

Release of Invalid Pointer or Reference

Overview Magick.NET-Q16-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

8.3CVSS5.6AI score
Exploits0References2
Snyk
Snyk
added 2026/01/21 1:6 a.m.7 views

Release of Invalid Pointer or Reference

Overview Magick.NET-Q16-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.3CVSS5.6AI score
Exploits0References2
Snyk
Snyk
added 2026/01/21 1:6 a.m.10 views

Release of Invalid Pointer or Reference

Overview Magick.NET-Q8-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.3CVSS5.6AI score
Exploits0References2
Snyk
Snyk
added 2026/01/21 1:6 a.m.8 views

Release of Invalid Pointer or Reference

Overview Magick.NET-Q16-HDRI-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.3CVSS5.6AI score
Exploits0References2
Snyk
Snyk
added 2026/01/21 1:6 a.m.9 views

Release of Invalid Pointer or Reference

Overview Magick.NET-Q16-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.3CVSS5.6AI score
Exploits0References2
Snyk
Snyk
added 2026/01/21 1:6 a.m.9 views

Release of Invalid Pointer or Reference

Overview Magick.NET-Q16-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.3CVSS5.6AI score
Exploits0References2
Snyk
Snyk
added 2026/01/21 1:6 a.m.10 views

Release of Invalid Pointer or Reference

Overview Magick.NET-Q8-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.3CVSS5.6AI score
Exploits0References2
Snyk
Snyk
added 2026/01/21 1:6 a.m.9 views

Release of Invalid Pointer or Reference

Overview Magick.NET-Q16-HDRI-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.3CVSS5.6AI score
Exploits0References2
Snyk
Snyk
added 2026/01/21 1:6 a.m.9 views

Release of Invalid Pointer or Reference

Overview Magick.NET-Q16-HDRI-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

8.3CVSS5.6AI score
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/01/21 1:6 a.m.10 views

ImageMagick has a Memory Leak in LoadOpenCLDeviceBenchmark() when parsing malformed XML

Summary A memory leak vulnerability exists in the LoadOpenCLDeviceBenchmark function in MagickCore/opencl.c. When parsing a malformed OpenCL device profile XML file that contains closing tags, the function fails to release allocated memory for string members platformname, vendorname, name, versio...

5.7AI score
Exploits0References3Affected Software19
Rows per page
Query Builder