DescriptionA heap-based buffer overflow vulnerability was found in ImageMagick in versions prior to 7.0.11-14 in ReadTIFFImage() in coders/tiff.c. This issue is due to an incorrect setting of the pixel array size, which can lead to a crash and segmentation fault.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs1037090

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
imagemagick (PTS)buster8:
buster (security)8:
bullseye (security), bullseye8:
sid, trixie, bookworm8:

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
imagemagicksourcebuster(not affected)


[bookworm] - imagemagick <no-dsa> (Minor issue)
[bullseye] - imagemagick <no-dsa> (Minor issue)
[buster] - imagemagick <not-affected> (Vulnerable code introduced later)
ImageMagick6 prerequisite for <= 6.9.10-92:
ImageMagick6 prerequisite for <= 6.9.11-10:
ImageMagick6 prerequisite for <= 6.9.11-54:
ImageMagick6 [1/2]: (6.9.12-14)
ImageMagick6 [2/2]: (6.9.12-14)
Introduced by (Support 32-bit tiles TIFF images): (6.9.10-88)

Search for package or bug name: Reporting problems