ImageMagick Memory Leak Vulnerability in TIFF Encoder

Vulnerability

A memory leak vulnerability has been identified in ImageMagick versions prior to 7.1.2-26, specifically within the TIFF encoder. This vulnerability arises when memory allocation fails, leading to a small memory leak. Attackers can exploit this issue by triggering allocation failures during the processing of TIFF images, causing memory exhaustion and resulting in a denial-of-service condition.

Impact

Exploitation of this vulnerability leads to a memory leak, causing memory exhaustion and a denial-of-service condition.

Remediation

Users can upgrade to ImageMagick version 7.1.2-26 or later to address this vulnerability.

Added: Jul 15, 2026, 12:25 PM
Updated: Jul 15, 2026, 12:25 PM

Vulnerability Rating

Custom Algorithm
spread
7.8
impact
2.5
exploitability
4.7
remediation
7.7
relevance
9.7
threat
0.0
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.