49 matches found
CVE-2026-28690
A flaw was found in ImageMagick. Processing a specially crafted image with the MNG encoder can cause a stack-based buffer overflow due to a missing bounds check, leading to a denial of service and potentially arbitrary code execution. Mitigation To mitigate this vulnerability, disable the...
Stack-based Buffer Overflow
Overview Magick.NET-Q16-HDRI-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...
Stack-based Buffer Overflow
Overview Magick.NET-Q16-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...
Stack-based Buffer Overflow
Overview Magick.NET-Q16-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...
Stack-based Buffer Overflow
Overview Affected versions of this package are vulnerable to Stack-based Buffer Overflow in WriteOneJNGImage in the MNG encoder. An attacker can cause stack corruption. Workaround This vulnerability can be mitigated by disabling the vulnerable encoder by adding to the policy.xml file. Remediation...
Stack-based Buffer Overflow
Overview Magick.NET-Q8-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...
Use After Free
Overview Magick.NET-Q16-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...
Use After Free
Overview Magick.NET-Q8-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package ar...
Use After Free
Overview Magick.NET-Q16-HDRI-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package a...
CVE-2026-24485
A flaw was found in ImageMagick. A remote attacker could exploit this vulnerability by providing a specially crafted PCD Picture CD image file that lacks a valid Sync marker. This causes the DecodeImage function to enter an infinite loop, leading to continuous CPU resource consumption and system...
CVE-2026-25966
A flaw was found in ImageMagick. The "secure" security policy, intended to prevent reading and writing from standard streams, can be bypassed. An attacker can exploit this by using fd: pseudo-filenames, which are not properly blocked by the policy. This allows the attacker to circumvent the...
Infinite loop
Overview Magick.NET-Q16-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...
Infinite loop
Overview Magick.NET-Q8-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...
Ubuntu 16.04 ESM / 18.04 LTS : ImageMagick vulnerabilities (USN-5736-1)
The remote Ubuntu 16.04 ESM / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5736-1 advisory. It was discovered that ImageMagick incorrectly handled certain values when processing PDF files. If a user or automated system using...
Huawei EulerOS: Security Advisory for ImageMagick (EulerOS-SA-2022-1270)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP5 : ImageMagick (EulerOS-SA-2022-1270)
According to the versions of the ImageMagick packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - ImageMagick is free software delivered as a ready-to-run binary distribution or as source code that you may use, copy, modify, and distribu...
ImageMagick code issue vulnerability (CNVD-2022-05854)
ImageMagick is a set of open source image processing software. ImageMagick has a code problem vulnerability, the vulnerability stems from the product policy.xml file module policy exclusion Postscript file, an attacker can use the vulnerability to cause the file can be read and write...
Design/Logic Flaw
ImageMagick is free software delivered as a ready-to-run binary distribution or as source code that you may use, copy, modify, and distribute in both open and proprietary applications. In affected versions and in certain cases, Postscript files could be read and written when specifically excluded...
Imagemagick Studio ImageMagick 竞争条件问题漏洞
ImageMagick is a set of open source image processing software. ImageMagick has a code problem vulnerability, the vulnerability stems from the product policy.xml file module policy exclusion Postscript file, an attacker can use the vulnerability to cause the file can be read and write...
CVE-2021-39212
ImageMagick is free software delivered as a ready-to-run binary distribution or as source code that you may use, copy, modify, and distribute in both open and proprietary applications. In affected versions and in certain cases, Postscript files could be read and written when specifically excluded...