CVE-2026-30931

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2026-30931

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-30931.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2026-30931

Aliases

GHSA-h95r-c8c7-mrwx

Downstream

DEBIAN-CVE-2026-30931

DSA-6169-1

ECHO-ec17-f27d-4cc9

MINI-746j-7fqg-mcgw

OESA-2026-1693

OESA-2026-1694

OESA-2026-1695

OESA-2026-1696

OESA-2026-1697

SUSE-SU-2026:1202-1

SUSE-SU-2026:20917-1

UBUNTU-CVE-2026-30931

openSUSE-SU-2026:10386-1

openSUSE-SU-2026:20405-1

Related

Published

2026-03-09T21:47:48.915Z

Modified

2026-05-15T04:14:34.455918805Z

Severity

6.8 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H CVSS Calculator

Summary

ImageMagick has a heap-based buffer overflow in UHDR encoder

Details

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, a heap-based buffer overflow in the UHDR encoder can happen due to truncation of a value and it would allow an out of bounds write. This vulnerability is fixed in 7.1.2-16.

Database specific

{
    "cwe_ids": [
        "CWE-122"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/30xxx/CVE-2026-30931.json",
    "cna_assigner": "GitHub_M"
}

References

Affected packages