CVE-2026-56372

Summary

ImageMagick before 7.1.2-19 contains a heap buffer overflow vulnerability in the magnify operation that allows attackers to read out of bounds memory. An unrecognized magnify:method value triggers an out of bounds read, potentially exposing sensitive information or causing denial of service.

Affected Software

VendorProductVersion RangeStatus
ImageMagickImageMagick0 < 7.1.2-19affected
ImageMagickImageMagick7.1.2-19unaffected

Weaknesses

  • CWE-122: Heap-based Buffer Overflow

References