CVE-2019-13135
Description
ImageMagick before 7.0.8-50 has a use-of-uninitialized-value vulnerability in ReadCUTImage that can lead to undefined behavior.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
ImageMagick before 7.0.8-50 has a use-of-uninitialized-value vulnerability in ReadCUTImage that can lead to undefined behavior.
Vulnerability
ImageMagick versions prior to 7.0.8-50 contain a use-of-uninitialized-value vulnerability in the ReadCUTImage function within coders/cut.c [1]. When processing a specially crafted CUT image, the function allocates a buffer (BImgBuff) via AcquireQuantumMemory but does not initialize its contents before use [1][2][3]. This can lead to reading uninitialized memory, potentially causing undefined behavior.
Exploitation
An attacker can exploit this vulnerability by providing a malicious CUT image file to an application using ImageMagick. No special privileges are required; the attacker only needs to deliver the crafted file to the victim (e.g., via email, web upload, or other means). The vulnerability is triggered during image decoding when ReadCUTImage processes the RLE compressed raster data without initializing the allocated buffer [1].
Impact
Successful exploitation could lead to information disclosure (reading uninitialized memory) or potentially other undefined behavior depending on the memory state. The impact is limited to the context of the ImageMagick process; however, if the uninitialized data is used in further operations, it might lead to more severe consequences such as crashes or arbitrary code execution in some scenarios.
Mitigation
The vulnerability is fixed in ImageMagick version 7.0.8-50 and later [3]. Users should upgrade to the latest version. For ImageMagick 6, the fix is included in commit 1e59b29 [2]. No workarounds are documented; upgrading is the recommended mitigation.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
13- ImageMagick/ImageMagickdescription
- Range: <7.0.8-50
- osv-coords11 versionspkg:rpm/opensuse/ImageMagick&distro=openSUSE%20Leap%2015.0pkg:rpm/opensuse/ImageMagick&distro=openSUSE%20Leap%2015.1pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP4pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP1pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP1pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP4pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP4
< 7.0.7.34-lp151.7.9.1+ 10 more
- (no CPE)range: < 7.0.7.34-lp151.7.9.1
- (no CPE)range: < 7.0.7.34-lp151.7.9.1
- (no CPE)range: < 6.8.8.1-71.126.1
- (no CPE)range: < 7.0.7.34-3.67.1
- (no CPE)range: < 7.0.7.34-3.67.1
- (no CPE)range: < 7.0.7.34-3.67.1
- (no CPE)range: < 7.0.7.34-3.67.1
- (no CPE)range: < 6.8.8.1-71.126.1
- (no CPE)range: < 6.8.8.1-71.126.1
- (no CPE)range: < 6.8.8.1-71.126.1
- (no CPE)range: < 6.8.8.1-71.126.1
Patches
0No patches discovered yet.
Vulnerability mechanics
Root cause
"The ReadCUTImage function fails to initialize memory allocated for the raster buffer, leading to the use of uninitialized values."
Attack vector
An attacker can trigger this vulnerability by providing a specially crafted CUT image file to the application [ref_id=1]. When the application processes this file, the uninitialized memory buffer is accessed, potentially resulting in undefined behavior. The vulnerability occurs during the loading of RLE compressed raster data [ref_id=1].
Affected code
The vulnerability is located in the ReadCUTImage function within the coders/cut.c file [ref_id=1]. Specifically, the issue occurs during the allocation and subsequent usage of the BImgBuff pointer [ref_id=1].
What the fix does
The advisory indicates that the vulnerability arises because the BImgBuff buffer is not initialized after allocation [ref_id=1]. Remediation requires ensuring that the allocated memory is properly initialized before use. No specific patch file is provided in the bundle to verify the exact code change.
Preconditions
- inputThe application must process a maliciously crafted CUT image file.
Generated on Jun 1, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
10- lists.opensuse.org/opensuse-security-announce/2019-08/msg00069.htmlmitrevendor-advisoryx_refsource_SUSE
- usn.ubuntu.com/4192-1/mitrevendor-advisoryx_refsource_UBUNTU
- www.debian.org/security/2020/dsa-4712mitrevendor-advisoryx_refsource_DEBIAN
- github.com/ImageMagick/ImageMagick/commit/cdb383749ef7b68a38891440af8cc23e0115306dmitrex_refsource_MISC
- github.com/ImageMagick/ImageMagick/issues/1599mitrex_refsource_MISC
- github.com/ImageMagick/ImageMagick6/commit/1e59b29e520d2beab73e8c78aacd5f1c0d76196dmitrex_refsource_MISC
- lists.debian.org/debian-lts-announce/2019/08/msg00021.htmlmitremailing-listx_refsource_MLIST
- lists.debian.org/debian-lts-announce/2020/09/msg00007.htmlmitremailing-listx_refsource_MLIST
- support.f5.com/csp/article/K20336394mitrex_refsource_CONFIRM
- support.f5.com/csp/article/K20336394mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.