Imagemagick

Imagemagick

725 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2025-55160

Exploit
  • EPSS 0.04%
  • Veröffentlicht 13.08.2025 14:00:53
  • Zuletzt bearbeitet 15.08.2025 19:25:21

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-27 and 7.1.2-1, there is undefined behavior (function-type-mismatch) in splay tree cloning callback. This results in a determinist...

7.8

CVE-2025-55154

Exploit
  • EPSS 0.05%
  • Veröffentlicht 13.08.2025 14:00:28
  • Zuletzt bearbeitet 03.11.2025 19:16:12

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-27 and 7.1.2-1, the magnified size calculations in ReadOneMNGIMage (in coders/png.c) are unsafe and can overflow, leading to memor...

5.5

CVE-2025-55005

Exploit
  • EPSS 0.03%
  • Veröffentlicht 13.08.2025 13:59:50
  • Zuletzt bearbeitet 15.08.2025 19:36:34

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, when preparing to transform from Log to sRGB colorspaces, the logmap construction fails to handle cases where the reference-black...

4.3

CVE-2025-55004

Exploit
  • EPSS 0.04%
  • Veröffentlicht 13.08.2025 13:59:23
  • Zuletzt bearbeitet 15.08.2025 19:31:52

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, ImageMagick is vulnerable to heap-buffer overflow read around the handling of images with separate alpha channels when performing...

9.8

CVE-2025-53101

Exploit
  • EPSS 0.08%
  • Veröffentlicht 14.07.2025 19:51:53
  • Zuletzt bearbeitet 03.11.2025 19:16:08

ImageMagick is free and open-source software used for editing and manipulating digital images. In versions prior to 7.1.2-0 and 6.9.13-26, in ImageMagick's `magick mogrify` command, specifying multiple consecutive `%d` format specifiers in a filename...

7.5

CVE-2025-53019

  • EPSS 0.06%
  • Veröffentlicht 14.07.2025 19:42:49
  • Zuletzt bearbeitet 03.11.2025 19:16:08

ImageMagick is free and open-source software used for editing and manipulating digital images. In versions prior to 7.1.2-0 and 6.9.13-26, in ImageMagick's `magick stream` command, specifying multiple consecutive `%d` format specifiers in a filename ...

7.5

CVE-2025-53015

Exploit
  • EPSS 0.04%
  • Veröffentlicht 14.07.2025 19:31:27
  • Zuletzt bearbeitet 08.10.2025 17:06:58

ImageMagick is free and open-source software used for editing and manipulating digital images. In versions prior to 7.1.2-0, infinite lines occur when writing during a specific XMP file conversion command. Version 7.1.2-0 fixes the issue.

9.8

CVE-2025-53014

Exploit
  • EPSS 0.03%
  • Veröffentlicht 14.07.2025 18:15:23
  • Zuletzt bearbeitet 03.11.2025 19:16:07

ImageMagick is free and open-source software used for editing and manipulating digital images. Versions prior to 7.1.2-0 and 6.9.13-26 have a heap buffer overflow in the `InterpretImageFilename` function. The issue stems from an off-by-one error that...

7.5

CVE-2025-43965

  • EPSS 0.23%
  • Veröffentlicht 23.04.2025 00:00:00
  • Zuletzt bearbeitet 31.12.2025 15:41:59

In MIFF image processing in ImageMagick before 7.1.1-44, image depth is mishandled after SetQuantumFormat is used.

5.3

CVE-2025-46393

  • EPSS 0.23%
  • Veröffentlicht 23.04.2025 00:00:00
  • Zuletzt bearbeitet 31.12.2025 15:28:43

In multispectral MIFF image processing in ImageMagick before 7.1.1-44, packet_size is mishandled (related to the rendering of all channels in an arbitrary order).