logo

Database

Lack of data validation In magick.net-q16-hdri-x64

Description

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-16 and 6.9.13-41, an overflow on 32-bit systems can cause a crash in the SFW decoder when processing extremely large images. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

1-10 of 25

10

Aliases

1. CVE-2026-318532. NVD-2026-318533. OSV-2026-318534. OSV-DEBIAN-2026-318535. GHSA-56jp-jfqg-f8f46. GCVE-2026-318537. SECURITY-TRACKER-CVE-2026-31853

References

1. https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-56jp-jfqg-f8f42. https://github.com/dlemstra/Magick.NET/releases/tag/14.10.4

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.