How to fix EUVD-2025-21389?

Within 24 hours: Inventory all systems running ImageMagick and identify critical instances processing untrusted image inputs. Within 7 days: Apply vendor patches (7.1.2-0 for v7.x or 6.9.13-26 for v6.x) to all affected systems, prioritizing production and customer-facing environments. Within 30 days: Verify patch deployment across the entire infrastructure and validate image processing functionality post-update.

Is Imagemagick affected by EUVD-2025-21389?

ImageMagick versions prior to 7.1.2-0 and 6.9.13-26 contain a stack overflow vulnerability that could allow attackers to execute arbitrary code on systems processing specially crafted image files.

EUVD-2025-21389

| CVE-2025-53101 HIGH

2025-07-14 [email protected]

GHSA-qh3h-j545-h8c9

7.4

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 16, 2026 - 09:43 vuln.today

EUVD ID Assigned

Mar 16, 2026 - 09:43 euvd

EUVD-2025-21389

Patch Released

Mar 16, 2026 - 09:43 nvd

Patch available

PoC Detected

Nov 03, 2025 - 19:16 vuln.today

Public exploit code

CVE Published

Jul 14, 2025 - 20:15 nvd

HIGH 7.4

Description

ImageMagick is free and open-source software used for editing and manipulating digital images. In versions prior to 7.1.2-0 and 6.9.13-26, in ImageMagick's `magick mogrify` command, specifying multiple consecutive `%d` format specifiers in a filename template causes internal pointer arithmetic to generate an address below the beginning of the stack buffer, resulting in a stack overflow through `vsnprintf()`. Versions 7.1.2-0 and 6.9.13-26 fix the issue.

Analysis

A remote code execution vulnerability in versions (CVSS 7.4). Risk factors: public PoC available. Vendor patch is available.

Technical Context

Vulnerability type: remote code execution. CVSS 7.4 indicates high severity. Affects versions.

Affected Products

['versions']

Remediation

Apply the vendor-supplied patch immediately.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.1

CVSS: +37

POC: +20

Vendor Status

Ubuntu

Priority: Medium

imagemagick

Release	Status	Version
upstream	released	7.1.2-0, 6.9.13-26
bionic	released	8:6.9.7.4+dfsg-16ubuntu6.15+esm4
plucky	ignored	end of life, was needed
focal	released	8:6.9.10.23+dfsg-2.1ubuntu11.11+esm2
jammy	released	8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm2
noble	released	8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm1
trusty	released	8:6.7.7.10-6ubuntu3.13+esm13
xenial	released	8:6.8.9.9-7ubuntu5.16+esm12
questing	not-affected	8:7.1.1.43+dfsg1-1ubuntu1

USN-7728-1

Debian

Bug #1109339

imagemagick

Release	Status	Fixed Version	Urgency
bullseye	fixed	8:6.9.11.60+dfsg-1.3+deb11u6	-
bullseye (security)	fixed	8:6.9.11.60+dfsg-1.3+deb11u10	-
bookworm	fixed	8:6.9.11.60+dfsg-1.6+deb12u4	-
bookworm (security)	fixed	8:6.9.11.60+dfsg-1.6+deb12u7	-
trixie	fixed	8:7.1.1.43+dfsg1-1+deb13u1	-
trixie (security)	fixed	8:7.1.1.43+dfsg1-1+deb13u6	-
forky	fixed	8:7.1.2.15+dfsg1-2	-
sid	fixed	8:7.1.2.16+dfsg1-1	-
(unstable)	fixed	8:7.1.1.47+dfsg1-2	-

DLA-4297-1

EUVD-2025-21389 vulnerability details – vuln.today

Back

EUVD-2025-21389

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Vendor Status

Ubuntu

Debian

Share

EUVD-2025-21389

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Vendor Status

Ubuntu

Debian

Share

External POC / Exploit Code