CNNVD-202512-5097 Information
CNNVD ID
CNNVD-202512-5097
Related CVE
- CNNVD Published: 2025-12-30
Description (Chinese)
ImageMagick是ImageMagick开源的一套开源的图像处理软件。可读取、转换或写入多种格式的图片。 ImageMagick 7.1.2-12之前版本存在安全漏洞,该漏洞源于读取恶意SVG文件,可能导致拒绝服务攻击。
Description (English)
ImageMagick is an open-source image-processing software for ImageMagick open source. Reads, converts or writes pictures in multiple formats. Prior to ImageMagick 7.1.2-12, there was a security loophole that originated from the reading of malicious SVG documents and could lead to a denial of service attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
in-toto
Published
2025-12-30
Last Modified
2026-02-24
References
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-p27m-hp98-6637 https://github.com/ImageMagick/ImageMagick/commit/6f431d445f3ddd609c004a1dde617b0a73e60beb https://vigilance.fr/vulnerability/ImageMagick-denial-of-service-via-Nested-Vector-Graphics-49207
Patch
https://imagemagick.org/script/download.php#gsc.tab=0
Share on: