An off-by-one read vulnerability was discovered in ImageMagick before version 7.0.7-28 in the formatIPTCfromBuffer function in coders/meta.c. A local attacker may use this flaw to read beyond the end of the buffer or to crash the program.
{
"unresolved_ranges": [
{
"vendor_product": "imagemagick:imagemagick",
"extracted_events": [
{
"introduced": "7.0.0-0"
},
{
"fixed": "7.0.7-28"
},
{
"introduced": "7.0.0-0"
},
{
"fixed": "7.0.7-28"
}
],
"source": "CPE_RANGE",
"cpes": [
"cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*"
]
},
{
"vendor_product": "canonical:ubuntu_linux",
"extracted_events": [
{
"introduced": "16.04"
},
{
"last_affected": "16.04"
},
{
"introduced": "18.04"
},
{
"last_affected": "18.04"
},
{
"introduced": "18.10"
},
{
"last_affected": "18.10"
},
{
"introduced": "19.04"
},
{
"last_affected": "19.04"
}
],
"source": "CPE_STRING",
"cpes": [
"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*",
"cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*"
]
},
{
"vendor_product": "debian:debian_linux",
"extracted_events": [
{
"introduced": "9.0"
},
{
"last_affected": "9.0"
}
],
"source": "CPE_STRING",
"cpes": [
"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*"
]
},
{
"vendor_product": "opensuse:leap",
"extracted_events": [
{
"introduced": "42.3"
},
{
"last_affected": "42.3"
}
],
"source": "CPE_STRING",
"cpes": [
"cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*"
]
},
{
"vendor_product": "redhat:enterprise_linux",
"extracted_events": [
{
"introduced": "7.0"
},
{
"last_affected": "7.0"
}
],
"source": "CPE_STRING",
"cpes": [
"cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*"
]
}
]
}"2026-07-11T18:19:17Z"
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-10131.json"
[
{
"id": "CVE-2019-10131-55133e0c",
"digest": {
"function_hash": "9588234269115181578498912064492621498",
"length": 2465.0
},
"source": "https://github.com/imagemagick/imagemagick/commit/cb1214c124e1bd61f7dd551b94a794864861592e",
"signature_version": "v1",
"deprecated": false,
"signature_type": "Function",
"target": {
"function": "format8BIM",
"file": "coders/meta.c"
}
},
{
"id": "CVE-2019-10131-b1def855",
"digest": {
"threshold": 0.9,
"line_hashes": [
"181957705159388868330456054562825076761",
"95653993851328839223675366880202045573",
"272811913007478620690302709833313147253",
"15865150528732214679732792869704955309"
]
},
"source": "https://github.com/imagemagick/imagemagick/commit/cb1214c124e1bd61f7dd551b94a794864861592e",
"signature_version": "v1",
"deprecated": false,
"signature_type": "Line",
"target": {
"file": "coders/meta.c"
}
}
]
{
"cpe": "cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*",
"extracted_events": [
{
"introduced": "0"
},
{
"fixed": "6.9.9-40"
}
],
"source": "CPE_RANGE"
}