PT-2026-51228 · Imagemagick · Imagemagick

Ylwango613

Published

2026-06-21

Updated

2026-06-21

CVE-2026-56378

CVSS v3.1

3.7

Low

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

ImageMagick before 7.1.2-15 (and 6.x before 6.9.13-40) contains a heap out-of-bounds read in the PCD coder's DecodeImage loop. A crafted PCD file can trigger a one-byte heap out-of-bounds read during image decoding, resulting in denial of service and potential disclosure of an adjacent heap byte.

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

CVE-2026-56378

Affected Products

Imagemagick

PT-2026-51228 · Imagemagick · Imagemagick

CVE-2026-56378

Weakness Enumeration

Related Identifiers

Affected Products

References · 3