VulnerableCode Package Details - pkg:nuget/Magick.NET-Q16-HDRI-OpenMP-x64@14.12.0

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-4zrw-tv4p-6fg3	ImageMagick has a heap-buffer-overflow in FTXT encoder The FTXT encoder lacks a boundary check when parsing `ftxt:format`, resulting in an out of bounds read. ``` ==3040863==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x5020000085b2 at pc 0x606c1ee0c6ce bp 0x7ffee30d6150 sp 0x7ffee30d6148 READ of size 1 at 0x5020000085b2 thread T0 ```	GHSA-w54j-7wpm-crhj
VCID-57jr-g62b-tbd3	ImageMagick has a memory leak in PNG encoder when writing a MNG image When the PNG encoder fails to write an MNG image it can leak memory.	GHSA-x928-4434-crqj
VCID-ayjc-27p7-xkfs	ImageMagick has has a stack-buffer-overflow in MNG encoder with oversized pallete The patch for GHSA-7h7q-j33q-hvpf was incomplete and still allows a stack buffer overflow for the multi frame images.	GHSA-98cp-rj9f-6v5g
VCID-bkhu-mtsz-wubs	ImageMagick has a heap buffer overflow read in magnify operation via unrecognized magnify:method value An unrecognized magnify:method will result in an out of bounds read in the magnify operation. ``` ==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x61a000000b30 READ of size 4 at 0x61a000000b30 thread T0 ```	GHSA-8vfj-q2cp-5m5j
VCID-es84-ey86-wkfp	ImageMagick has has an off-by-one origin validation in allows out-of-bounds read in morphology processing An incorrect morphology would allow an out of bounds read of a single pixel. ``` ==1200284==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x5100000002d0 at pc 0x59e28e60c27a bp 0x7fff047fd8e0 sp 0x7fff047fd8d0 READ of size 4 at 0x5100000002d0 thread T0 ```	GHSA-q8h3-jv9v-57qx
VCID-zdnb-14uw-xucc	ImageMagick has out-of-bounds access in ConnectedComponentsImage() via CLI-controlled connected-components:* artifacts When the `connected-components:*` define specifies an invalid index and out of bound operation will result in an access violation.	GHSA-pmpg-6pww-fg6q

Vulnerability

Summary

Aliases

VCID-4zrw-tv4p-6fg3

ImageMagick has a heap-buffer-overflow in FTXT encoder The FTXT encoder lacks a boundary check when parsing `ftxt:format`, resulting in an out of bounds read. ``` ==3040863==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x5020000085b2 at pc 0x606c1ee0c6ce bp 0x7ffee30d6150 sp 0x7ffee30d6148 READ of size 1 at 0x5020000085b2 thread T0 ```

GHSA-w54j-7wpm-crhj

VCID-57jr-g62b-tbd3

ImageMagick has a memory leak in PNG encoder when writing a MNG image When the PNG encoder fails to write an MNG image it can leak memory.

GHSA-x928-4434-crqj

VCID-ayjc-27p7-xkfs

ImageMagick has has a stack-buffer-overflow in MNG encoder with oversized pallete The patch for GHSA-7h7q-j33q-hvpf was incomplete and still allows a stack buffer overflow for the multi frame images.

GHSA-98cp-rj9f-6v5g

VCID-bkhu-mtsz-wubs

ImageMagick has a heap buffer overflow read in magnify operation via unrecognized magnify:method value An unrecognized magnify:method will result in an out of bounds read in the magnify operation. ``` ==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x61a000000b30 READ of size 4 at 0x61a000000b30 thread T0 ```

GHSA-8vfj-q2cp-5m5j

VCID-es84-ey86-wkfp

ImageMagick has has an off-by-one origin validation in allows out-of-bounds read in morphology processing An incorrect morphology would allow an out of bounds read of a single pixel. ``` ==1200284==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x5100000002d0 at pc 0x59e28e60c27a bp 0x7fff047fd8e0 sp 0x7fff047fd8d0 READ of size 4 at 0x5100000002d0 thread T0 ```

GHSA-q8h3-jv9v-57qx

VCID-zdnb-14uw-xucc

ImageMagick has out-of-bounds access in ConnectedComponentsImage() via CLI-controlled connected-components:* artifacts When the `connected-components:*` define specifies an invalid index and out of bound operation will result in an access violation.

GHSA-pmpg-6pww-fg6q

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-19T00:06:26.264510+00:00	GHSA Importer	Fixing	VCID-57jr-g62b-tbd3	https://github.com/advisories/GHSA-x928-4434-crqj	38.4.0
2026-04-19T00:06:25.570356+00:00	GHSA Importer	Fixing	VCID-zdnb-14uw-xucc	https://github.com/advisories/GHSA-pmpg-6pww-fg6q	38.4.0
2026-04-19T00:06:25.193845+00:00	GHSA Importer	Fixing	VCID-bkhu-mtsz-wubs	https://github.com/advisories/GHSA-8vfj-q2cp-5m5j	38.4.0
2026-04-19T00:06:25.077096+00:00	GHSA Importer	Fixing	VCID-ayjc-27p7-xkfs	https://github.com/advisories/GHSA-98cp-rj9f-6v5g	38.4.0
2026-04-19T00:06:24.663442+00:00	GHSA Importer	Fixing	VCID-es84-ey86-wkfp	https://github.com/advisories/GHSA-q8h3-jv9v-57qx	38.4.0
2026-04-19T00:06:24.102702+00:00	GHSA Importer	Fixing	VCID-4zrw-tv4p-6fg3	https://github.com/advisories/GHSA-w54j-7wpm-crhj	38.4.0
2026-04-18T04:27:48.313738+00:00	GithubOSV Importer	Fixing	VCID-es84-ey86-wkfp	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/04/GHSA-q8h3-jv9v-57qx/GHSA-q8h3-jv9v-57qx.json	38.4.0
2026-04-18T04:27:47.966211+00:00	GithubOSV Importer	Fixing	VCID-57jr-g62b-tbd3	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/04/GHSA-x928-4434-crqj/GHSA-x928-4434-crqj.json	38.4.0
2026-04-18T04:27:45.740658+00:00	GithubOSV Importer	Fixing	VCID-zdnb-14uw-xucc	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/04/GHSA-pmpg-6pww-fg6q/GHSA-pmpg-6pww-fg6q.json	38.4.0
2026-04-18T04:27:41.375822+00:00	GithubOSV Importer	Fixing	VCID-ayjc-27p7-xkfs	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/04/GHSA-98cp-rj9f-6v5g/GHSA-98cp-rj9f-6v5g.json	38.4.0
2026-04-18T04:27:39.915710+00:00	GithubOSV Importer	Fixing	VCID-bkhu-mtsz-wubs	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/04/GHSA-8vfj-q2cp-5m5j/GHSA-8vfj-q2cp-5m5j.json	38.4.0
2026-04-18T04:27:32.897622+00:00	GithubOSV Importer	Fixing	VCID-4zrw-tv4p-6fg3	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/04/GHSA-w54j-7wpm-crhj/GHSA-w54j-7wpm-crhj.json	38.4.0