Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.
7.4

ImageMagick: Image data can be written outside its boundaries

CVE-2026-25968 GHSA-3mwp-xqp2-q6ph
Summary

A bug in ImageMagick's image processing code can allow an attacker to write data beyond the intended boundaries of an image, potentially causing damage or corruption. This affects users who rely on ImageMagick for image processing. To protect yourself, keep your ImageMagick software up to date, and be cautious when processing untrusted image files.

What to do
  • Update magick.net-q16-anycpu to version 14.10.3.
  • Update magick.net-q16-hdri-anycpu to version 14.10.3.
  • Update magick.net-q16-hdri-openmp-arm64 to version 14.10.3.
  • Update magick.net-q16-hdri-arm64 to version 14.10.3.
  • Update magick.net-q16-hdri-x64 to version 14.10.3.
  • Update magick.net-q16-hdri-x86 to version 14.10.3.
  • Update magick.net-q16-openmp-arm64 to version 14.10.3.
  • Update magick.net-q16-openmp-x64 to version 14.10.3.
  • Update magick.net-q16-openmp-x86 to version 14.10.3.
  • Update magick.net-q16-arm64 to version 14.10.3.
  • Update magick.net-q16-x64 to version 14.10.3.
  • Update magick.net-q16-x86 to version 14.10.3.
  • Update magick.net-q16-hdri-openmp-x64 to version 14.10.3.
  • Update magick.net-q8-anycpu to version 14.10.3.
  • Update magick.net-q8-openmp-arm64 to version 14.10.3.
  • Update magick.net-q8-openmp-x64 to version 14.10.3.
  • Update magick.net-q8-arm64 to version 14.10.3.
  • Update magick.net-q8-x64 to version 14.10.3.
  • Update magick.net-q8-x86 to version 14.10.3.
Affected software
VendorProductAffected versionsFix available
imagemagick imagemagick <= 6.9.13-40
imagemagick imagemagick > 7.0.0-0 , <= 7.1.2-15
magick.net-q16-anycpu <= 14.10.3 14.10.3
magick.net-q16-hdri-anycpu <= 14.10.3 14.10.3
magick.net-q16-hdri-openmp-arm64 <= 14.10.3 14.10.3
magick.net-q16-hdri-arm64 <= 14.10.3 14.10.3
magick.net-q16-hdri-x64 <= 14.10.3 14.10.3
magick.net-q16-hdri-x86 <= 14.10.3 14.10.3
magick.net-q16-openmp-arm64 <= 14.10.3 14.10.3
magick.net-q16-openmp-x64 <= 14.10.3 14.10.3
magick.net-q16-openmp-x86 <= 14.10.3 14.10.3
magick.net-q16-arm64 <= 14.10.3 14.10.3
magick.net-q16-x64 <= 14.10.3 14.10.3
magick.net-q16-x86 <= 14.10.3 14.10.3
magick.net-q16-hdri-openmp-x64 <= 14.10.3 14.10.3
magick.net-q8-anycpu <= 14.10.3 14.10.3
magick.net-q8-openmp-arm64 <= 14.10.3 14.10.3
magick.net-q8-openmp-x64 <= 14.10.3 14.10.3
magick.net-q8-arm64 <= 14.10.3 14.10.3
magick.net-q8-x64 <= 14.10.3 14.10.3
magick.net-q8-x86 <= 14.10.3 14.10.3
Original title
ImageMagick: MSL attribute stack buffer overflow leads to out of bounds write.
Original description
A stack buffer overflow occurs when processing the an attribute in msl.c. A long value overflows a fixed-size stack buffer, leading to memory corruption.

```
=================================================================
==278522==ERROR: AddressSanitizer: stack-buffer-overflow on address 0x7ffdb8c76984 at pc 0x55a4bf16f507 bp 0x7ffdb8c75bc0 sp 0x7ffdb8c75bb0
WRITE of size 1 at 0x7ffdb8c76984 thread T0
```
nvd CVSS3.1 9.8
Vulnerability type
CWE-121 Stack-based Buffer Overflow
CWE-787 Out-of-bounds Write
Published: 12 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026