CVE-2025-55004 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, ImageMagick is vulnerable to heap-buffe…
High CVSS: 7.6

CVE-2025-55004

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, ImageMagick is vulnerable to heap-buffer overflow read around the handling of images with separate alpha channels when performing image magnification in ReadOneMNGIMage. This can likely be used to leak subsequent memory contents into the output image. This issue has been patched in version 7.1.2-1.
Vendor
Imagemagick
Product
Imagemagick
CWE
CWE-122
Yayın Tarihi
2025-08-13 14:15:32
Güncelleme
2025-08-15 19:31:52
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-122 Imagemagick HIGH Imagemagick 2025

Referanslar

https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-cjc8-g9w8-chfw https://goo.gle/bigsleep https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-cjc8-g9w8-chfw