JLSEC-2026-494 WPG in GraphicsMagick before 1.3.46 mishandles palette buffer allocation.

ReadWPGImage in WPG in GraphicsMagick before 1.3.46 mishandles palette buffer allocation, resulting in out-of-bounds access to heap memory in ReadBlob...

Important: libpng

Issue Overview: LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. In versions 1.2.1 through 1.6.55, pngsettRNS and pngsetPLTE each alias a heap-allocated buffer between pngstruct and pnginfo, sharing a single...

CVE-2026-33416

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. In versions 1.2.1 through 1.6.55, pngsettRNS and pngsetPLTE each alias a heap-allocated buffer between pngstruct and pnginfo, sharing a single allocation acros...

SUSE CVE-2026-33416

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. In versions 1.2.1 through 1.6.55, pngsettRNS and pngsetPLTE each alias a heap-allocated buffer between pngstruct and pnginfo, sharing a single allocation acros...

Medium: GraphicsMagick

Issue Overview: ReadJXLImage in JXL in GraphicsMagick before 1.3.46 lacks image dimension resource limits. CVE-2025-27795 ReadWPGImage in WPG in GraphicsMagick before 1.3.46 mishandles palette buffer allocation, resulting in out-of-bounds access to heap memory in ReadBlob. CVE-2025-27796...

CVE-2025-27796

ReadWPGImage in WPG in GraphicsMagick before 1.3.46 mishandles palette buffer allocation, resulting in out-of-bounds access to heap memory in ReadBlob...

DEBIAN-CVE-2025-27796

ReadWPGImage in WPG in GraphicsMagick before 1.3.46 mishandles palette buffer allocation, resulting in out-of-bounds access to heap memory in ReadBlob...

CVE-2025-27796

ReadWPGImage in WPG in GraphicsMagick before 1.3.46 mishandles palette buffer allocation, resulting in out-of-bounds access to heap memory in ReadBlob...

UBUNTU-CVE-2025-27796

ReadWPGImage in WPG in GraphicsMagick before 1.3.46 mishandles palette buffer allocation, resulting in out-of-bounds access to heap memory in ReadBlob...

CVE-2025-27796

ReadWPGImage in WPG in GraphicsMagick before 1.3.46 mishandles palette buffer allocation, resulting in out-of-bounds access to heap memory in ReadBlob...

GraphicsMagick 安全漏洞

GraphicsMagick is GraphicsMagick open source set of simple image processing tools. It provides resizing, rotation, highlighting and other functions. A security vulnerability exists in GraphicsMagick versions prior to 1.3.46, which stems from an improperly allocated palette buffer in the...

CVE-2025-27796

CVE-2025-27796: ReadWPGImage in WPG of GraphicsMagick before 1.3.46 mishandles palette buffer allocation, causing out-of-bounds access in ReadBlob. This affects GraphicsMagick; exploitation depended on an under-1.3.46 build. Mitigation: upgrade GraphicsMagick to 1.3.46 or newer (per advisories fo...

PT-2025-10041

Name of the Vulnerable Software and Affected Versions GraphicsMagick versions prior to 1.3.46 Description The issue concerns the mishandling of palette buffer allocation in WPG, which is a part of GraphicsMagick. Recommendations For versions prior to 1.3.46, update to version 1.3.46 or later to...