NuGet package

magick.net-q16-hdri-x86

pkg:nuget/magick.net-q16-hdri-x86

Vulnerabilities (85)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2026-40312	Med	6.2	< 14.12.0	14.12.0	Apr 13, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-19, an off by one error in the MSL decoder could result in a crash when a malicous MSL file is read. This issue has been fixed in version 7.1.2-19.
CVE-2026-40311	Med	5.5	< 14.12.0	14.12.0	Apr 13, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. Versions below 7.1.2-19 and 6.9.13-44 contain a heap use-after-free vulnerability that can cause a crash when reading and printing values from an invalid XMP profile. This issue has bee
CVE-2026-40310	Med	5.5	< 14.12.0	14.12.0	Apr 13, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. Versions below both 7.1.2-19 and 6.9.13-44, contain a heap out-of-bounds write in the JP2 encoder with when a user specifies an invalid sampling index. This issue has been fixed in vers
CVE-2026-40183	Med	5.5	< 14.12.0	14.12.0	Apr 13, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-19, the JXL encoder has an heap write overflow when a user specifies that the image should be encoded as 16 bit floats. This issue has been fixed in version 7.1.
CVE-2026-40169	Med	6.2	< 14.12.0	14.12.0	Apr 13, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-19, a crafted image could result in an out of bounds heap write when writing a yaml or json output, resulting in a crash. This issue has been fixed in version 7.
CVE-2026-34238	Med	5.1	< 14.12.0	14.12.0	Apr 13, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, an integer overflow in the despeckle operation causes a heap buffer overflow on 32-bit builds that will result in an out of bounds write.
CVE-2026-33908	Hig	7.5	< 14.12.0	14.12.0	Apr 13, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, Magick frees the memory of the XML tree via the `DestroyXMLTree()` function; however, this process is executed recursively with no depth l
CVE-2026-33905	Med	5.5	< 14.12.0	14.12.0	Apr 13, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, the -sample operation has an out of bounds read when an specific offset is set through the `sample:offset` define that could lead to an ou
CVE-2026-33902	Med	5.5	< 14.12.0	14.12.0	Apr 13, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, a stack overflow vulnerability in ImageMagick's FX expression parser allows an attacker to crash the process by providing a deeply nested
CVE-2026-33901	Hig	7.5	< 14.12.0	14.12.0	Apr 13, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, a heap buffer overflow occurs in the MVG decoder that could result in an out of bounds write when processing a crafted image. This issue h
CVE-2026-33900	Med	5.9	< 14.12.0	14.12.0	Apr 13, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, the viff encoder contains an integer truncation/wraparound issue on 32-bit builds that could trigger an out of bounds heap write, potentia
CVE-2026-33899	Med	5.3	< 14.12.0	14.12.0	Apr 13, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-189 and 6.9.13-44, when `Magick` parses an XML file it is possible that a single zero byte is written out of the bounds. This issue has been fixed in versions 6.
CVE-2026-33536	Med	5.1	< 14.11.1	14.11.1	Mar 26, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, due to an incorrect return value on certain platforms a pointer is incremented past the end of a buffer that is on the stack and that could result in an
CVE-2026-33535	Med	4.0	< 14.11.1	14.11.1	Mar 26, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, an out-of-bounds write of a zero byte exists in the X11 `display` interaction path that could lead to a crash. Versions 7.1.2-18 and 6.9.13-43 patch the
CVE-2026-32636		—	< 14.11.0	14.11.0	Mar 18, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-17 and 6.9.13-42, the NewXMLTree method contains a bug that could result in a crash due to an out of write bounds of a single zero byte. Versions 7.1.2-17 and 6.9.13-42 f
CVE-2026-31853		—	< 14.10.4	14.10.4	Mar 11, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-16 and 6.9.13-41, an overflow on 32-bit systems can cause a crash in the SFW decoder when processing extremely large images. This vulnerability is fixed in 7.1.2-16 and 6
CVE-2026-30937		—	< 14.10.4	14.10.4	Mar 9, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a 32-bit unsigned integer overflow in the XWD (X Windows) encoder can cause an undersized heap buffer allocation. When writing a extremely larg
CVE-2026-30936		—	< 14.10.4	14.10.4	Mar 9, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a crafted image could cause an out of bounds heap write inside the WaveletDenoiseImage method. When processing a crafted image with the -wavele
CVE-2026-30935		—	< 14.10.4	14.10.4	Mar 9, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, BilateralBlurImage contains a heap buffer over-read caused by an incorrect conversion. When processing a crafted image with the -bilateral-blur operation an
CVE-2026-30931		—	< 14.10.4	14.10.4	Mar 9, 2026	ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, a heap-based buffer overflow in the UHDR encoder can happen due to truncation of a value and it would allow an out of bounds write. This vulnerability is fix

CVE-2026-40312MedApr 13, 2026
affected < 14.12.0fixed 14.12.0
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-19, an off by one error in the MSL decoder could result in a crash when a malicous MSL file is read. This issue has been fixed in version 7.1.2-19.
CVE-2026-40311MedApr 13, 2026
affected < 14.12.0fixed 14.12.0
ImageMagick is free and open-source software used for editing and manipulating digital images. Versions below 7.1.2-19 and 6.9.13-44 contain a heap use-after-free vulnerability that can cause a crash when reading and printing values from an invalid XMP profile. This issue has bee
CVE-2026-40310MedApr 13, 2026
affected < 14.12.0fixed 14.12.0
ImageMagick is free and open-source software used for editing and manipulating digital images. Versions below both 7.1.2-19 and 6.9.13-44, contain a heap out-of-bounds write in the JP2 encoder with when a user specifies an invalid sampling index. This issue has been fixed in vers
CVE-2026-40183MedApr 13, 2026
affected < 14.12.0fixed 14.12.0
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-19, the JXL encoder has an heap write overflow when a user specifies that the image should be encoded as 16 bit floats. This issue has been fixed in version 7.1.
CVE-2026-40169MedApr 13, 2026
affected < 14.12.0fixed 14.12.0
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-19, a crafted image could result in an out of bounds heap write when writing a yaml or json output, resulting in a crash. This issue has been fixed in version 7.
CVE-2026-34238MedApr 13, 2026
affected < 14.12.0fixed 14.12.0
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, an integer overflow in the despeckle operation causes a heap buffer overflow on 32-bit builds that will result in an out of bounds write.
CVE-2026-33908HigApr 13, 2026
affected < 14.12.0fixed 14.12.0
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, Magick frees the memory of the XML tree via the `DestroyXMLTree()` function; however, this process is executed recursively with no depth l
CVE-2026-33905MedApr 13, 2026
affected < 14.12.0fixed 14.12.0
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, the -sample operation has an out of bounds read when an specific offset is set through the `sample:offset` define that could lead to an ou
CVE-2026-33902MedApr 13, 2026
affected < 14.12.0fixed 14.12.0
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, a stack overflow vulnerability in ImageMagick's FX expression parser allows an attacker to crash the process by providing a deeply nested
CVE-2026-33901HigApr 13, 2026
affected < 14.12.0fixed 14.12.0
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, a heap buffer overflow occurs in the MVG decoder that could result in an out of bounds write when processing a crafted image. This issue h
CVE-2026-33900MedApr 13, 2026
affected < 14.12.0fixed 14.12.0
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, the viff encoder contains an integer truncation/wraparound issue on 32-bit builds that could trigger an out of bounds heap write, potentia
CVE-2026-33899MedApr 13, 2026
affected < 14.12.0fixed 14.12.0
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-189 and 6.9.13-44, when `Magick` parses an XML file it is possible that a single zero byte is written out of the bounds. This issue has been fixed in versions 6.
CVE-2026-33536MedMar 26, 2026
affected < 14.11.1fixed 14.11.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, due to an incorrect return value on certain platforms a pointer is incremented past the end of a buffer that is on the stack and that could result in an
CVE-2026-33535MedMar 26, 2026
affected < 14.11.1fixed 14.11.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, an out-of-bounds write of a zero byte exists in the X11 `display` interaction path that could lead to a crash. Versions 7.1.2-18 and 6.9.13-43 patch the
CVE-2026-32636Mar 18, 2026
affected < 14.11.0fixed 14.11.0
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-17 and 6.9.13-42, the NewXMLTree method contains a bug that could result in a crash due to an out of write bounds of a single zero byte. Versions 7.1.2-17 and 6.9.13-42 f
CVE-2026-31853Mar 11, 2026
affected < 14.10.4fixed 14.10.4
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-16 and 6.9.13-41, an overflow on 32-bit systems can cause a crash in the SFW decoder when processing extremely large images. This vulnerability is fixed in 7.1.2-16 and 6
CVE-2026-30937Mar 9, 2026
affected < 14.10.4fixed 14.10.4
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a 32-bit unsigned integer overflow in the XWD (X Windows) encoder can cause an undersized heap buffer allocation. When writing a extremely larg
CVE-2026-30936Mar 9, 2026
affected < 14.10.4fixed 14.10.4
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a crafted image could cause an out of bounds heap write inside the WaveletDenoiseImage method. When processing a crafted image with the -wavele
CVE-2026-30935Mar 9, 2026
affected < 14.10.4fixed 14.10.4
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, BilateralBlurImage contains a heap buffer over-read caused by an incorrect conversion. When processing a crafted image with the -bilateral-blur operation an
CVE-2026-30931Mar 9, 2026
affected < 14.10.4fixed 14.10.4
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, a heap-based buffer overflow in the UHDR encoder can happen due to truncation of a value and it would allow an out of bounds write. This vulnerability is fix

Page 1 of 5