Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
3.3
ImageMagick FTXT encoder can read beyond its allowed memory space
GHSA-w54j-7wpm-crhj
Summary
The FTXT encoder in ImageMagick does not properly check the size of input data, which can lead to unexpected behavior or crashes. This issue affects users who use the FTXT encoder, particularly those who work with images that contain malicious or malformed data. To mitigate this issue, update to the latest version of ImageMagick.
What to do
- Update magick.net-q16-anycpu to version 14.20.0.
- Update magick.net-q16-hdri-anycpu to version 14.20.0.
- Update magick.net-q16-hdri-openmp-arm64 to version 14.20.0.
- Update magick.net-q16-hdri-arm64 to version 14.20.0.
- Update magick.net-q16-hdri-x64 to version 14.20.0.
- Update magick.net-q16-hdri-x86 to version 14.20.0.
- Update magick.net-q16-openmp-arm64 to version 14.20.0.
- Update magick.net-q16-openmp-x64 to version 14.20.0.
- Update magick.net-q16-arm64 to version 14.20.0.
- Update magick.net-q16-x64 to version 14.20.0.
- Update magick.net-q16-x86 to version 14.20.0.
- Update magick.net-q16-hdri-openmp-x64 to version 14.20.0.
- Update magick.net-q8-anycpu to version 14.20.0.
- Update magick.net-q8-openmp-arm64 to version 14.20.0.
- Update magick.net-q8-openmp-x64 to version 14.20.0.
- Update magick.net-q8-arm64 to version 14.20.0.
- Update magick.net-q8-x64 to version 14.20.0.
- Update magick.net-q8-x86 to version 14.20.0.
Affected software
| Ecosystem | Vendor | Product | Affected versions |
|---|---|---|---|
| nuget | – | magick.net-q16-anycpu |
< 14.20.0 Fix: upgrade to 14.20.0
|
| nuget | – | magick.net-q16-hdri-anycpu |
< 14.20.0 Fix: upgrade to 14.20.0
|
| nuget | – | magick.net-q16-hdri-openmp-arm64 |
< 14.20.0 Fix: upgrade to 14.20.0
|
| nuget | – | magick.net-q16-hdri-arm64 |
< 14.20.0 Fix: upgrade to 14.20.0
|
| nuget | – | magick.net-q16-hdri-x64 |
< 14.20.0 Fix: upgrade to 14.20.0
|
| nuget | – | magick.net-q16-hdri-x86 |
< 14.20.0 Fix: upgrade to 14.20.0
|
| nuget | – | magick.net-q16-openmp-arm64 |
< 14.20.0 Fix: upgrade to 14.20.0
|
| nuget | – | magick.net-q16-openmp-x64 |
< 14.20.0 Fix: upgrade to 14.20.0
|
| nuget | – | magick.net-q16-arm64 |
< 14.20.0 Fix: upgrade to 14.20.0
|
| nuget | – | magick.net-q16-x64 |
< 14.20.0 Fix: upgrade to 14.20.0
|
| nuget | – | magick.net-q16-x86 |
< 14.20.0 Fix: upgrade to 14.20.0
|
| nuget | – | magick.net-q16-hdri-openmp-x64 |
< 14.20.0 Fix: upgrade to 14.20.0
|
| nuget | – | magick.net-q8-anycpu |
< 14.20.0 Fix: upgrade to 14.20.0
|
| nuget | – | magick.net-q8-openmp-arm64 |
< 14.20.0 Fix: upgrade to 14.20.0
|
| nuget | – | magick.net-q8-openmp-x64 |
< 14.20.0 Fix: upgrade to 14.20.0
|
| nuget | – | magick.net-q8-arm64 |
< 14.20.0 Fix: upgrade to 14.20.0
|
| nuget | – | magick.net-q8-x64 |
< 14.20.0 Fix: upgrade to 14.20.0
|
| nuget | – | magick.net-q8-x86 |
< 14.20.0 Fix: upgrade to 14.20.0
|
Original title
ImageMagick has a heap-buffer-overflow in FTXT encoder
Original description
The FTXT encoder lacks a boundary check when parsing `ftxt:format`, resulting in an out of bounds read.
```
==3040863==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x5020000085b2 at pc 0x606c1ee0c6ce bp 0x7ffee30d6150 sp 0x7ffee30d6148
READ of size 1 at 0x5020000085b2 thread T0
```
```
==3040863==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x5020000085b2 at pc 0x606c1ee0c6ce bp 0x7ffee30d6150 sp 0x7ffee30d6148
READ of size 1 at 0x5020000085b2 thread T0
```
ghsa CVSS3.1
3.3
Vulnerability type
CWE-125
Out-of-bounds Read
Published: 14 Apr 2026 · Updated: 15 Apr 2026 · First seen: 15 Apr 2026