What the vulnerability does

01Description

A heap-based buffer overflow vulnerability was found in ImageMagick in versions prior to 7.0.11-14 in ReadTIFFImage() in coders/tiff.c. This issue is due to an incorrect setting of the pixel array size, which can lead to a crash and segmentation fault.

Key dates

02Disclosure timeline

February 24, 2022 CVE published
January 26, 2026 Record updated