Unrated severityNVD Advisory· Published Mar 7, 2025· Updated Mar 7, 2025
CVE-2025-27796
CVE-2025-27796
Description
ReadWPGImage in WPG in GraphicsMagick before 1.3.46 mishandles palette buffer allocation, resulting in out-of-bounds access to heap memory in ReadBlob.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
14<1.3.46+ 1 more
- (no CPE)range: <1.3.46
- (no CPE)range: 0
- osv-coords12 versionspkg:apk/chainguard/graphicsmagickpkg:apk/chainguard/graphicsmagick-compatpkg:apk/chainguard/graphicsmagick-cpppkg:apk/chainguard/graphicsmagick-devpkg:apk/chainguard/graphicsmagick-docpkg:apk/wolfi/graphicsmagickpkg:apk/wolfi/graphicsmagick-compatpkg:apk/wolfi/graphicsmagick-cpppkg:apk/wolfi/graphicsmagick-devpkg:apk/wolfi/graphicsmagick-docpkg:deb/ubuntu/graphicsmagick@1.4+really1.3.45-1ubuntu0.1?arch=source&distro=oracularpkg:rpm/opensuse/GraphicsMagick&distro=openSUSE%20Tumbleweed
< 1.3.46-r0+ 11 more
- (no CPE)range: < 1.3.46-r0
- (no CPE)range: < 1.3.46-r0
- (no CPE)range: < 1.3.46-r0
- (no CPE)range: < 1.3.46-r0
- (no CPE)range: < 1.3.46-r0
- (no CPE)range: < 1.3.46-r0
- (no CPE)range: < 1.3.46-r0
- (no CPE)range: < 1.3.46-r0
- (no CPE)range: < 1.3.46-r0
- (no CPE)range: < 1.3.46-r0
- (no CPE)range: < 1.4+really1.3.45-1ubuntu0.1
- (no CPE)range: < 1.3.45-2.1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.