CVE-2026-28494 - ImageMagick affected by stack corruption through long morphology kernel names or...

CVE ID :CVE-2026-28494 Published : March 9, 2026, 9:31 p.m. | 1 hour, 6 minutes ago Description :ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow exists in ImageMagick's morphology kernel parsing functions. User-controlled kernel strings exceeding a buffer are copied into fixed-size stack buffers via memcpy without bounds checking, resulting in stack corruption. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...