Primary

Context

ImageMagick ASHLAR Image Writer Memory Leak Vulnerability

Vulnerability

Patched

A memory leak vulnerability has been identified in the ASHLAR image writer of ImageMagick, prior to version 7.1.2-15. This vulnerability allows an attacker to exhaust process memory by sending a crafted image that creates small, allocated objects that are never released. The issue has been patched in version 7.1.2-15.

Impact

Exploitation of this vulnerability leads to a memory leak, where allocated memory is not properly freed, causing increased memory usage and potential exhaustion of available resources.

Remediation

Users can upgrade to ImageMagick version 7.1.2-15 or later to address this vulnerability.

Added: Feb 24, 2026, 1:51 AM

Updated: Feb 24, 2026, 1:51 AM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

5.0

remediation

7.7

relevance

3.1

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

5.0

remediation

7.7

relevance

3.1

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ImageMagick ASHLAR Image Writer Memory Leak Vulnerability

Vulnerability

Impact

Remediation

Affected Products

ImageMagick

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating