Magick.NET-Q16-OpenMP-x86
NuGet20 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting Magick.NET-Q16-OpenMP-x86page 1 of 1
- CVE-2023-1289MEDIUMCVSS 5.5EG 5.5✓ Fixed in 13.0.02023-03-23
A vulnerability was discovered in ImageMagick where a specially created SVG file loads itself and causes a segmentation fault. This flaw allows a remote attacker to pass a specially crafted SVG file that leads to a segmentation fault, gene…
- CVE-2025-53015HIGHCVSS 7.5EG 7.5✓ Fixed in 14.7.02025-07-14
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions prior to 7.1.2-0, infinite lines occur when writing during a specific XMP file conversion command. Version 7.1.2-0 fixes the issue.
- CVE-2026-22770MEDIUMCVSS 6.5EG 6.5✓ Fixed in 14.10.22026-01-20
ImageMagick is free and open-source software used for editing and manipulating digital images. The BilateralBlurImage method will allocate a set of double buffers inside AcquireBilateralTLS. But, in versions prior to 7.1.2-13, the last ele…
- CVE-2026-23952MEDIUMCVSS 6.5EG 6.5✓ Fixed in 14.10.22026-01-22
ImageMagick is free and open-source software used for editing and manipulating digital images. Versions 14.10.1 and below have a NULL pointer dereference vulnerability in the MSL (Magick Scripting Language) parser when processing <comment>…
- CVE-2026-25637MEDIUMCVSS 5.3EG 5.3✓ Fixed in 14.10.32026-02-24
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-15, a memory leak in the ASHLAR image writer allows an attacker to exhaust process memory by providing a crafted image th…
- CVE-2026-25638MEDIUMCVSS 5.3EG 5.3✓ Fixed in 14.10.32026-02-24
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, memory leak exists in `coders/msl.c`. In the `WriteMSLImage` function of the `msl.c` file, resources a…
- CVE-2026-25965HIGHCVSS 7.5EG 7.5✓ Fixed in 14.10.32026-02-24
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, ImageMagick’s path security policy is enforced on the raw filename string before the filesystem reso…
- CVE-2026-25968CRITICALCVSS 9.8EG 9.8✓ Fixed in 14.10.32026-02-24
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a stack buffer overflow occurs when processing the an attribute in msl.c. A long value overflows a fix…
- CVE-2026-25969HIGHCVSS 7.5EG 7.5✓ Fixed in 14.10.32026-02-24
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-15, a memory leak exists in `coders/ashlar.c`. The `WriteASHLARImage` allocates a structure. However, when an exception …
- CVE-2026-25985HIGHCVSS 7.5EG 7.5✓ Fixed in 14.10.32026-02-24
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted SVG file containing an malicious element causes ImageMagick to attempt to allocate ~674 GB o…
- CVE-2026-28691HIGHCVSS 7.5EG 7.5✓ Fixed in 14.10.42026-03-10
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an uninitialized pointer dereference vulnerability exists in the JBIG decoder due to a missing check. …
- CVE-2026-28693HIGHCVSS 8.1EG 8.1✓ Fixed in 14.10.42026-03-10
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an integer overflow in DIB coder can result in out of bounds read or write. This vulnerability is fixe…
- CVE-2026-33535MEDIUMCVSS 4.0EG 4.0✓ Fixed in 14.11.12026-03-26
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, an out-of-bounds write of a zero byte exists in the X11 `display` interaction path that could lead to a crash. …
- CVE-2026-33536MEDIUMCVSS 5.1EG 5.1✓ Fixed in 14.11.12026-03-26
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, due to an incorrect return value on certain platforms a pointer is incremented past the end of a buffer that is…
- CVE-2026-56362MEDIUMCVSS 4.2EG 3.3✓ Fixed in 14.10.32026-07-08
ImageMagick before 7.1.2-15 contains a heap-buffer-overflow read vulnerability in GetPixelIndex caused by OpenPixelCache updating image channel metadata before pixel cache memory allocation. Attackers can trigger memory and disk allocation…
- CVE-2026-56364LOWCVSS 1.9EG 1.9✓ Fixed in 14.10.22026-07-01
ImageMagick before 7.1.2-13 contains a memory leak vulnerability in LoadOpenCLDeviceBenchmark() function when parsing malformed OpenCL device profile XML files with unclosed device elements. Attackers with write access to the OpenCL cache …
- CVE-2026-56367CRITICALCVSS 9.1EG 3.7✓ Fixed in 14.10.32026-06-21
ImageMagick before 7.1.2-15 and 6.9.x before 6.9.13-40 contains an integer overflow in the PSB (PSD v2) RLE decoding path (ReadPSDChannelRLE in coders/psd.c) that causes a heap out-of-bounds read on 32-bit builds. Processing a crafted PSB …
- CVE-2026-56371MEDIUMCVSS 5.3EG 5.3✓ Fixed in 14.10.32026-06-23
ImageMagick before 7.1.2-15 and 6.9.13-40 contains a memory leak in coders/txt.c when processing TXT files with texture attributes: the texture object allocated via ReadImage is not released when GetTypeMetrics fails, leaking memory each t…
- CVE-2026-56376LOWCVSS 3.3EG 3.7✓ Fixed in 14.10.32026-06-23
ImageMagick before 7.1.2-15 and 6.9.13-40 contains a heap use-after-free in the meta coder: when memory allocation fails, a single byte is written to a stale pointer. Remote attackers can trigger it by processing specially crafted image fi…
- CVE-2026-56379MEDIUMCVSS 5.5EG 5.5✓ Fixed in 14.10.32026-06-23
ImageMagick before 7.1.2-15 and 6.9.13-40 contains a command injection vulnerability in the SVG decoder that allows attackers to inject arbitrary MVG drawing commands. Attackers can craft malicious SVG files with injected Magick Vector Gra…
Check whether Magick.NET-Q16-OpenMP-x86 is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for Magick.NET-Q16-OpenMP-x86 CVEs against the assets you own.
Start Free Scan →