Vulnerabilities

ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-44cp-c3ww-9rv5
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • NuGet/Magick.NET-Q16-HDRI-x64
  • ... 12 more
ImageMagick has a Heap Buffer Over-Write in SF3 encoder when writing multi-frame image 3 days ago
  • Fix available
  • Severity - 6.2 (Medium)
GHSA-j989-f892-2335
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • NuGet/Magick.NET-Q16-HDRI-x64
  • ... 12 more
ImageMagick: Memory Leak in wand option parser when providing invalid arguments 3 days ago
  • Fix available
  • Severity - 4.0 (Medium)
GHSA-6q7j-xr26-3h2c
  • NuGet/Scriban
Scriban: ExpressionDepthLimit guard is non-enforcing — parser-recursion DoS in 6.6.0–7.2.0 (incomplete fix for GHSA-wgh7-7m3c-fx25 / GHSA-p6q4-fgr8-vx4p) 3 days ago
  • Fix available
  • Severity - 5.5 (Medium)
GHSA-q6rr-fm2g-g5x8
  • NuGet/Scriban
Scriban: array * int (ScriptArray<T>.TryEvaluate) bypasses LoopLimit — incomplete fix for GHSA-c875-h985-hvrc, missed sibling of GHSA-24c8-4792-22hx 3 days ago
  • Fix available
  • Severity - 5.5 (Medium)
GHSA-p9rq-q46c-g4x6
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • NuGet/Magick.NET-Q16-HDRI-x64
  • ... 12 more
ImageMagick has Null Pointer Dereference caused by the distort operation when passing incorrect arguments 3 days ago
  • Fix available
  • Severity - 4.3 (Medium)
GHSA-px7q-ggqj-hcf2
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • NuGet/Magick.NET-Q16-HDRI-x64
  • ... 12 more
ImageMagick has a Use-After-Free when allocation in CheckPrimitiveExtent fails 3 days ago
  • Fix available
  • Severity - 5.9 (Medium)
GHSA-g22q-f7gc-5jhr
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • NuGet/Magick.NET-Q16-HDRI-x64
  • ... 12 more
ImageMagick has out-of-bounds write in ICON decoder due to incorrect loop 4 days ago
  • Fix available
  • Severity - 7.5 (High)
GHSA-q62c-h75r-2xhc
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • NuGet/Magick.NET-Q16-HDRI-x64
  • ... 12 more
ImageMagick: Policy Bypass can Trigger an Out-of-Memory condition 4 days ago
  • Fix available
  • Severity - 7.5 (High)
GHSA-xcjm-wqff-m669
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • NuGet/Magick.NET-Q16-HDRI-x64
  • ... 12 more
ImageMagick: Policy Bypass can read disallowed files via symlink 4 days ago
  • Fix available
  • Severity - 5.5 (Medium)
GHSA-8pj9-6897-74xc
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • NuGet/Magick.NET-Q16-HDRI-x64
  • ... 12 more
ImageMagick: Policy Bypass in DCM decoder could result in image with invalid dimensions 4 days ago
  • Fix available
  • Severity - 7.5 (High)
GHSA-4v89-6mgq-6rgc
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • NuGet/Magick.NET-Q16-HDRI-x64
  • ... 12 more
ImageMagick has a Heap Buffer Over-Write in MAT decoder on 32-bit systems 4 days ago
  • Fix available
  • Severity - 5.9 (Medium)
GHSA-h36c-3666-h489
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • NuGet/Magick.NET-Q16-HDRI-x64
  • ... 12 more
ImageMagick Vulnerable to Stack Overflow in its MVG Decoder 4 days ago
  • Fix available
  • Severity - 5.5 (Medium)
GHSA-5v62-8fq6-cp9m
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • NuGet/Magick.NET-Q16-HDRI-x64
  • ... 12 more
ImageMagick has an Infinite Loop in subimage-search with crafted image 4 days ago
  • Fix available
  • Severity - 4.7 (Medium)
GHSA-2hhq-c99x-492r
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • NuGet/Magick.NET-Q16-HDRI-x64
  • ... 12 more
ImageMagick has a Heap Buffer Underwrite in the Floyd-Steinberg depth dithering method 4 days ago
  • Fix available
  • Severity - 5.5 (Medium)
GHSA-qhmf-xw27-6rqr
  • NuGet/MessagePack
MessagePack-CSharp: Typeless deserialization type restrictions do not recurse into arrays or generic arguments 4 days ago
  • Fix available
  • Severity - 6.3 (Medium)
GHSA-q2h6-ghwm-5qm8
  • NuGet/MessagePack
MessagePack-CSharp: InterfaceLookupFormatter bypasses collision-resistant comparer settings 4 days ago
  • Fix available
  • Severity - 6.3 (Medium)