Skip to main content

Red Hat EUVDEUVD-2026-16368

| CVE-2026-33536 MEDIUM
Stack-based Buffer Overflow (CWE-121)
2026-03-26 https://github.com/ImageMagick/ImageMagick GHSA-8793-7xv6-82cf
5.1
CVSS 3.1 · GitHub Advisory
Share

Severity by source

GitHub Advisory PRIMARY
5.1 MEDIUM
AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
SUSE
MEDIUM
qualitative
Red Hat
5.0 MEDIUM
qualitative

Primary rating from GitHub Advisory.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Local
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

4
Patch released
Mar 31, 2026 - 21:13 nvd
Patch available
EUVD ID Assigned
Mar 26, 2026 - 19:16 euvd
EUVD-2026-16368
Analysis Generated
Mar 26, 2026 - 19:16 vuln.today
CVE Published
Mar 26, 2026 - 19:14 nvd
MEDIUM 5.1

DescriptionGitHub Advisory

Due to an incorrect return value on certain platforms a pointer is incremented past the end of a buffer that is on the stack and that could result in an out of bounds write.

=================================================================
==48558==ERROR: AddressSanitizer: stack-buffer-overflow on address 0x00016b9b7490 at pc 0x0001046d48ac bp 0x00016b9b31d0 sp 0x00016b9b31c8
WRITE of size 1 at 0x00016b9b7490 thread T0

AnalysisAI

Stack buffer overflow in ImageMagick and Magick.NET due to incorrect pointer arithmetic on certain platforms allows local attackers to write one byte past allocated stack boundaries, causing denial of service. ImageMagick versions prior to 7.1.2-18 and 6.9.13-43, along with multiple Magick.NET NuGet packages, are affected. The vulnerability requires local access and specific platform conditions, but succeeds without user interaction.

Technical ContextAI

ImageMagick is a widely-used image manipulation library; Magick.NET is its .NET binding distributed via NuGet. The vulnerability resides in a code path where a platform-specific return value check fails, causing a pointer to be incremented beyond the bounds of a stack-allocated buffer (CWE-121: Stack-based Buffer Overflow). AddressSanitizer instrumentation confirms a single-byte write at address beyond buffer limits. The affected NuGet packages include multiple variants: magick.net-q16-anycpu, magick.net-q16-hdri-anycpu, magick.net-q16-hdri-openmp-arm64, magick.net-q16-hdri-arm64, magick.net-q16-hdri-x64, magick.net-q16-hdri-x86, magick.net-q16-openmp-arm64, magick.net-q16-openmp-x64, magick.net-q16-openmp-x86, and magick.net-q16-arm64, spanning quantum depth 16 with optional HDRI and OpenMP configurations.

RemediationAI

Upgrade ImageMagick to version 7.1.2-18 or later for the 7.x line, or 6.9.13-43 or later for the 6.x line. Correspondingly, upgrade Magick.NET packages to versions built against patched ImageMagick releases; consult the NuGet package metadata and GitHub advisory for confirmed fixed package versions. Until patching is possible, restrict local access to systems running vulnerable ImageMagick via filesystem permissions and process isolation, and validate input to image processing workflows to avoid triggering the platform-specific code path. Monitor the GitHub repository (https://github.com/ImageMagick/ImageMagick) for patch availability and release notes confirming the fix for CVE-2026-33536.

Vendor StatusVendor

SUSE

Severity: Medium
Product Status
SUSE Linux Enterprise Desktop 15 SP7 SUSE Linux Enterprise High Performance Computing 15 SP7 SUSE Linux Enterprise Server 15 SP7 SUSE Linux Enterprise Server for SAP Applications 15 SP7 Fixed
SUSE Linux Enterprise Module for Desktop Applications 15 SP7 Fixed
SUSE Linux Enterprise Module for Development Tools 15 SP7 Fixed
SUSE Linux Enterprise Server 12 SP5-LTSS Fixed
SUSE Linux Enterprise Server 15 SP6-LTSS Fixed

Share

EUVD-2026-16368 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy