logo

Database

Out-of-bounds read In imagemagick

Description

ImageMagick has Heap Buffer Overflow in WaveletDenoiseImage A crafted image could cause an out of bounds heap write inside the WaveletDenoiseImage method. When processing a crafted image with the -wavelet-denoise operation an out of bounds write can occur.

=================================================================
==661320==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x503000002754 at pc 0x5ff45f82c92a bp 0x7fffb732b400 sp 0x7fffb732b3f0
WRITE of size 4 at 0x503000002754 thread T0

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

1-10 of 25

10

Aliases

1. CVE-2026-309362. NVD-2026-309363. OSV-DEBIAN-2026-309364. OSV-2026-309365. GHSA-5ggv-92r5-cp4p6. GCVE-2026-309367. SECURITY-TRACKER-CVE-2026-30936

References

1. https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-5ggv-92r5-cp4p2. https://github.com/dlemstra/Magick.NET/releases/tag/14.10.4

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.