ImageMagick Memory Leak Vulnerability in JNG Encoder

Vulnerability

A memory leak vulnerability has been identified in ImageMagick versions prior to 7.1.2-26. This issue occurs in the JNG encoder when a blob cannot be opened. Attackers can exploit this vulnerability by sending malformed JNG files that disrupt blob operations, leading to resource exhaustion.

Impact

Exploitation of this vulnerability causes a memory leak, where the application fails to release allocated memory, potentially leading to resource exhaustion.

Added: Jul 15, 2026, 12:26 PM
Updated: Jul 15, 2026, 12:26 PM

Vulnerability Rating

Custom Algorithm
spread
7.8
impact
0.6
exploitability
3.3
remediation
7.7
relevance
9.8
threat
0.0
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.