VulnerableCode Package Details - pkg:nuget/Magick.NET-Q8-x86@14.10.2

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-53qa-r9wk-8uhy	ImageMagick MSL: Stack overflow via infinite recursion in ProcessMSLScript Stack overflow via infinite recursion in MSL (Magick Scripting Language) `<write>` command when writing to MSL format.	CVE-2026-23874 GHSA-9vj4-wc7r-p844
VCID-7sxq-bg17-v3bx	ImageMagick releases an invalid pointer in BilateralBlur when memory allocation fails The BilateralBlurImage method will allocate a set of double buffers inside AcquireBilateralTLS. But the last element in the set is not properly initialized. This will result in a release of an invalid pointer inside DestroyBilateralTLS when the memory allocation fails.	CVE-2026-22770 GHSA-39h3-g67r-7g3c
VCID-a8bq-4d3d-97gd	ImageMagick has a NULL pointer dereference in MSL parser via <comment> tag before image load NULL pointer dereference in MSL (Magick Scripting Language) parser when processing `<comment>` tag before any image is loaded.	CVE-2026-23952 GHSA-5vx3-wx4q-6cj8
VCID-kwru-mwnh-9yac	ImageMagick has a Memory Leak in LoadOpenCLDeviceBenchmark() when parsing malformed XML A memory leak vulnerability exists in the `LoadOpenCLDeviceBenchmark()` function in `MagickCore/opencl.c`. When parsing a malformed OpenCL device profile XML file that contains `<device` elements without proper `/>` closing tags, the function fails to release allocated memory for string members (`platform_name`, `vendor_name`, `name`, `version`), leading to memory leaks that could result in resource exhaustion. Affected Version: ImageMagick 7.1.2-12 and possibly earlier versions ---	GHSA-qp59-x883-77qv

Vulnerability

Summary

Aliases

VCID-53qa-r9wk-8uhy

ImageMagick MSL: Stack overflow via infinite recursion in ProcessMSLScript Stack overflow via infinite recursion in MSL (Magick Scripting Language) `<write>` command when writing to MSL format.

CVE-2026-23874
GHSA-9vj4-wc7r-p844

VCID-7sxq-bg17-v3bx

ImageMagick releases an invalid pointer in BilateralBlur when memory allocation fails The BilateralBlurImage method will allocate a set of double buffers inside AcquireBilateralTLS. But the last element in the set is not properly initialized. This will result in a release of an invalid pointer inside DestroyBilateralTLS when the memory allocation fails.

CVE-2026-22770
GHSA-39h3-g67r-7g3c

VCID-a8bq-4d3d-97gd

ImageMagick has a NULL pointer dereference in MSL parser via <comment> tag before image load NULL pointer dereference in MSL (Magick Scripting Language) parser when processing `<comment>` tag before any image is loaded.

CVE-2026-23952
GHSA-5vx3-wx4q-6cj8

VCID-kwru-mwnh-9yac

ImageMagick has a Memory Leak in LoadOpenCLDeviceBenchmark() when parsing malformed XML A memory leak vulnerability exists in the `LoadOpenCLDeviceBenchmark()` function in `MagickCore/opencl.c`. When parsing a malformed OpenCL device profile XML file that contains `<device` elements without proper `/>` closing tags, the function fails to release allocated memory for string members (`platform_name`, `vendor_name`, `name`, `version`), leading to memory leaks that could result in resource exhaustion. **Affected Version**: ImageMagick 7.1.2-12 and possibly earlier versions ---

GHSA-qp59-x883-77qv

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-05-31T10:53:14.594201+00:00	GithubOSV Importer	Fixing	VCID-7sxq-bg17-v3bx	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/01/GHSA-39h3-g67r-7g3c/GHSA-39h3-g67r-7g3c.json	38.6.0
2026-05-31T10:53:11.537721+00:00	GithubOSV Importer	Fixing	VCID-kwru-mwnh-9yac	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/01/GHSA-qp59-x883-77qv/GHSA-qp59-x883-77qv.json	38.6.0
2026-05-31T10:53:01.972224+00:00	GithubOSV Importer	Fixing	VCID-a8bq-4d3d-97gd	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/01/GHSA-5vx3-wx4q-6cj8/GHSA-5vx3-wx4q-6cj8.json	38.6.0
2026-05-31T10:52:43.829804+00:00	GithubOSV Importer	Fixing	VCID-53qa-r9wk-8uhy	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/01/GHSA-9vj4-wc7r-p844/GHSA-9vj4-wc7r-p844.json	38.6.0
2026-05-31T01:06:53.974407+00:00	GHSA Importer	Fixing	VCID-a8bq-4d3d-97gd	https://github.com/advisories/GHSA-5vx3-wx4q-6cj8	38.6.0
2026-05-31T01:06:53.795309+00:00	GHSA Importer	Fixing	VCID-kwru-mwnh-9yac	https://github.com/advisories/GHSA-qp59-x883-77qv	38.6.0
2026-05-31T01:06:53.241035+00:00	GHSA Importer	Fixing	VCID-53qa-r9wk-8uhy	https://github.com/advisories/GHSA-9vj4-wc7r-p844	38.6.0
2026-05-31T01:06:51.558325+00:00	GHSA Importer	Fixing	VCID-7sxq-bg17-v3bx	https://github.com/advisories/GHSA-39h3-g67r-7g3c	38.6.0
2026-05-30T21:06:03.790107+00:00	GitLab Importer	Fixing	VCID-a8bq-4d3d-97gd	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Magick.NET-Q8-x86/CVE-2026-23952.yml	38.6.0
2026-05-30T21:06:03.746907+00:00	GitLab Importer	Fixing	VCID-53qa-r9wk-8uhy	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Magick.NET-Q8-x86/CVE-2026-23874.yml	38.6.0
2026-05-30T21:06:02.003825+00:00	GitLab Importer	Fixing	VCID-kwru-mwnh-9yac	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Magick.NET-Q8-x86/GHSA-qp59-x883-77qv.yml	38.6.0
2026-05-30T21:05:59.745462+00:00	GitLab Importer	Fixing	VCID-7sxq-bg17-v3bx	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Magick.NET-Q8-x86/CVE-2026-22770.yml	38.6.0