Volerion logoVolerion
Volerion logoVolerion

ImageMagick Out-of-Bounds Read Vulnerability in Sample Operation

Vulnerability

A vulnerability allowing an out-of-bounds read has been identified in ImageMagick versions prior to 7.1.2-19 and 6.9.13-44. The issue arises in the '-sample' operation when a specific offset is applied through the 'sample:offset' define, potentially leading to memory access violations.

Impact

Exploitation of this vulnerability causes a memory access violation, leading to an out-of-bounds read. Such memory corruption issues can often be exploited to execute arbitrary code or cause a denial-of-service condition.

Reproduction

To reproduce this vulnerability, use an affected version of ImageMagick and apply the '-sample' operation with a specific offset defined by 'sample:offset'. This will trigger the out-of-bounds read condition.

Remediation

Users can upgrade to ImageMagick versions 7.1.2-19 or 6.9.13-44 to address this vulnerability.

Added: Apr 13, 2026, 10:48 PM
Updated: Apr 13, 2026, 10:48 PM

Vulnerability Rating

Custom Algorithm
spread
7.8
impact
0.6
exploitability
5.3
remediation
7.7
relevance
5.8
threat
4.8
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.