logo

Database

Improper resource allocation - Buffer overflow In imagemagick

Description

ImageMagick has stack write buffer overflow in MNG encoder A stack buffer overflow vulnerability exists in the MNG encoder. There is a bounds checks missing that could corrupting the stack with attacker-controlled data.

==2265506==ERROR: AddressSanitizer: stack-buffer-overflow on address 0x7ffec4971310 at pc 0x55e671b8a072 bp 0x7ffec4970f70 sp 0x7ffec4970f68
WRITE of size 1 at 0x7ffec4971310 thread T0

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

1-10 of 25

10

Aliases

1. CVE-2026-286902. NVD-2026-286903. OSV-DEBIAN-2026-286904. OSV-2026-286905. GHSA-7h7q-j33q-hvpf6. GCVE-2026-286907. SECURITY-TRACKER-CVE-2026-28690

References

1. https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-7h7q-j33q-hvpf2. https://github.com/dlemstra/Magick.NET/releases/tag/14.10.4

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.