CVE-2022-44267
Description
ImageMagick 7.1.0-49 is vulnerable to a denial of service via a crafted PNG image that causes the convert process to hang waiting for stdin input.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
ImageMagick 7.1.0-49 is vulnerable to a denial of service via a crafted PNG image that causes the convert process to hang waiting for stdin input.
Vulnerability
ImageMagick version 7.1.0-49 is vulnerable to a denial of service when parsing a specially crafted PNG image. During operations such as convert, the process may become stuck waiting for stdin input, leading to a hang. The vulnerability resides in the PNG parsing code and is triggered when the image is processed by the software [1].
Exploitation
An attacker can exploit this vulnerability by providing a malicious PNG image to an application or service that uses ImageMagick to process images. No authentication or special privileges are required; the attacker only needs to supply the crafted file. When ImageMagick attempts to parse the image (e.g., during a resize operation), the process enters a state where it waits indefinitely for stdin input, effectively hanging [1].
Impact
Successful exploitation results in a denial of service (DoS) condition. The affected ImageMagick process becomes unresponsive, consuming system resources and potentially preventing legitimate image processing tasks from completing. This impacts availability but does not lead to information disclosure or code execution [1].
Mitigation
No fixed version is explicitly identified in the available references. Users should upgrade to the latest version of ImageMagick (7.1.2-23 as of the reference date) as a precaution, though it is not confirmed that this version includes a patch for CVE-2022-44267. Workarounds include restricting the processing of untrusted PNG images or using a security policy to limit resource usage [1].
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
27- Range: = 7.1.0-49
- osv-coords26 versionspkg:rpm/opensuse/ImageMagick&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/ImageMagick&distro=openSUSE%20Tumbleweedpkg:rpm/suse/ImageMagick&distro=SUSE%20Enterprise%20Storage%207pkg:rpm/suse/ImageMagick&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-ESPOSpkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP4pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP4pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP3pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCLpkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSSpkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5pkg:rpm/suse/ImageMagick&distro=SUSE%20OpenStack%20Cloud%209pkg:rpm/suse/ImageMagick&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209
< 7.0.7.34-150200.10.42.1+ 25 more
- (no CPE)range: < 7.0.7.34-150200.10.42.1
- (no CPE)range: < 7.1.1.17-1.1
- (no CPE)range: < 7.0.7.34-150200.10.42.1
- (no CPE)range: < 7.0.7.34-150200.10.42.1
- (no CPE)range: < 7.0.7.34-150000.3.123.1
- (no CPE)range: < 7.0.7.34-150200.10.42.1
- (no CPE)range: < 7.0.7.34-150200.10.42.1
- (no CPE)range: < 7.0.7.34-150200.10.42.1
- (no CPE)range: < 7.1.0.9-150400.6.12.1
- (no CPE)range: < 7.1.0.9-150400.6.12.1
- (no CPE)range: < 7.0.7.34-150200.10.42.1
- (no CPE)range: < 6.8.8.1-71.183.1
- (no CPE)range: < 6.8.8.1-71.183.1
- (no CPE)range: < 6.8.8.1-71.183.1
- (no CPE)range: < 7.0.7.34-150000.3.123.1
- (no CPE)range: < 7.0.7.34-150200.10.42.1
- (no CPE)range: < 7.0.7.34-150200.10.42.1
- (no CPE)range: < 6.8.8.1-71.183.1
- (no CPE)range: < 6.8.8.1-71.183.1
- (no CPE)range: < 7.0.7.34-150000.3.123.1
- (no CPE)range: < 7.0.7.34-150200.10.42.1
- (no CPE)range: < 7.0.7.34-150200.10.42.1
- (no CPE)range: < 6.8.8.1-71.183.1
- (no CPE)range: < 6.8.8.1-71.183.1
- (no CPE)range: < 6.8.8.1-71.183.1
- (no CPE)range: < 6.8.8.1-71.183.1
Patches
0No patches discovered yet.
Vulnerability mechanics
Root cause
"The convert process in ImageMagick 7.1.0-49 can enter a state where it waits indefinitely for standard input when parsing a PNG image."
Attack vector
An attacker can send a malicious PNG file to a victim. When the victim opens or processes this PNG file using the vulnerable ImageMagick version, the convert process may hang, waiting for further input, leading to a denial of service. [ref_id=1].
Affected code
The vulnerability affects ImageMagick version 7.1.0-49. Specifically, the issue occurs when the convert process parses a PNG image, such as during a resize operation. [ref_id=1].
What the fix does
The advisory does not specify the exact fix implemented. However, it indicates that the vulnerability is resolved in later versions of ImageMagick. Users are advised to update to a patched version to mitigate the denial of service vulnerability.
Preconditions
- inputThe attacker must provide a specially crafted PNG file.
- inputThe victim must process the malicious PNG file using a vulnerable version of ImageMagick.
Generated on Jun 2, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
6- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AINSUL2QBKETGYRPA7XSCMJWLUB44M6S/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZZLLS37P67CMBRML6OCG42GPCKGRCJNV/mitrevendor-advisory
- www.debian.org/security/2023/dsa-5347mitrevendor-advisory
- lists.debian.org/debian-lts-announce/2023/03/msg00008.htmlmitremailing-list
- imagemagick.orgmitre
- www.metabaseq.com/imagemagick-zero-days/mitre
News mentions
0No linked articles in our index yet.