MEDIUM 5.3 NuGet
ImageMagick has memory leak of watermark Image object in ReadSTEGANOImage on multiple error/early-return paths
GHSA-g2pr-qxjg-7r2w · CVE-2026-25796
Published · Modified
Description
Summary
In ReadSTEGANOImage() (coders/stegano.c), the watermark Image object is not freed on three early-return paths, resulting in a definite memory leak (~13.5KB+ per invocation) that can be exploited for denial of service.
Direct leak of 13512 byte(s) in 1 object(s) allocated from:
#0 0x7f5c11e27887 in __interceptor_malloc ../../../../src/libsanitizer/asan/asan_malloc_linux.cpp:145
#1 0x55cdc38f65c4 in AcquireMagickMemory MagickCore/memory.c:536
#2 0x55cdc38f65eb in AcquireCriticalMemory MagickCore/memory.c:612
#3 0x55cdc3899e91 in AcquireImage MagickCore/image.c:154
References
- WEB https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-g2pr-qxjg-7r2w
- ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2026-25796
- WEB https://github.com/ImageMagick/ImageMagick/commit/93ad259ce4f6d641eea0bee73f374af90f35efc3
- PACKAGE https://github.com/ImageMagick/ImageMagick
- WEB https://github.com/dlemstra/Magick.NET/releases/tag/14.10.3
Ready to move
Start Securing
Free, no credit card | First findings in minutes