Primary

Context

ImageMagick Uninitialized Pointer Dereference Vulnerability in JBIG Decoder

Vulnerability

Patched

A vulnerability allowing uninitialized pointer dereference has been identified in ImageMagick's JBIG decoder. This issue arises from a missing check, leading to potential exploitation. The vulnerability affects ImageMagick versions prior to 7.1.2-16 and 6.9.13-41. Exploitation of this vulnerability can cause a denial-of-service condition by crashing the application.

Impact

Exploitation of this vulnerability leads to an uninitialized pointer dereference, causing a denial-of-service condition by crashing the application.

Remediation

Users can upgrade to ImageMagick versions 7.1.2-16 or 6.9.13-41 to address this vulnerability.

Added: Mar 10, 2026, 7:46 AM

Updated: Mar 10, 2026, 7:46 AM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

4.7

remediation

7.7

relevance

3.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

4.7

remediation

7.7

relevance

3.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ImageMagick Uninitialized Pointer Dereference Vulnerability in JBIG Decoder

Vulnerability

Impact

Remediation

Affected Products

ImageMagick

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating