CVE-2026-23952
Vulnerability
CVE-2026-23952
ImageMagick: ImageMagick: Denial of Service via processing of MSL comment tags
ecosystem: redhat:6, redhat:7ImageMagick is free and open-source software used for editing and manipulating digital images. Versions 14.10.1 and below have a NULL pointer dereference vulnerability in the MSL (Magick Scripting Language) parser when processing <comment> tags before images are loaded. This can lead to DoS attack due to assertion failure (debug builds) or NULL pointer dereference (release builds). This issue is fixed in version 14.10.2.
References
- secalert@redhat.com: https://access.redhat.com/security/cve/CVE-2026-23952
- secalert@redhat.com: https://bugzilla.redhat.com/show_bug.cgi?id=2431905
- secalert@redhat.com: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-5vx3-wx4q-6cj8
- secalert@redhat.com: https://github.com/dlemstra/Magick.NET/releases/tag/14.10.2
- secalert@redhat.com: https://nvd.nist.gov/vuln/detail/CVE-2026-23952
- secalert@redhat.com: https://www.cve.org/CVERecord?id=CVE-2026-23952
type: vendor
source: secalert@redhat.com
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
| AV | Network | |
|---|---|---|
| AC | Low | |
| PR | Low | |
| UI | None | |
| S | Not Changed | |
| C | None | |
| I | None | |
| A | High |
source: secalert@redhat.com
NULL Pointer Dereference
source: secalert@redhat.com
published: 2026-01-22 00:32:52
modified: 2026-02-27 16:36:27
Detection
redhat-vex
OR
 
ImageMagick
package type: binary
 
ImageMagick-c++
package type: binary
 
ImageMagick-c++-devel
package type: binary
 
ImageMagick-devel
package type: binary
 
ImageMagick-doc
package type: binary
 
ImageMagick-perl
package type: binary
 
ImageMagick
package type: source
tag: rhel-6-els:bed973f4-9cfe-9d6b-4efd-5501f715a543
OR
 
ImageMagick
package type: binary
 
ImageMagick-c++
package type: binary
 
ImageMagick-c++-devel
package type: binary
 
ImageMagick-devel
package type: binary
 
ImageMagick-doc
package type: binary
 
ImageMagick-perl
package type: binary
 
ImageMagick
package type: source
tag: rhel-6-extras-including-unpatched:bed973f4-9cfe-9d6b-4efd-5501f715a543
OR
 
ImageMagick
package type: binary
 
ImageMagick-c++
package type: binary
 
ImageMagick-c++-devel
package type: binary
 
ImageMagick-devel
package type: binary
 
ImageMagick-doc
package type: binary
 
ImageMagick-perl
package type: binary
 
ImageMagick
package type: source
tag: rhel-6-including-unpatched:bed973f4-9cfe-9d6b-4efd-5501f715a543
OR
 
ImageMagick
package type: binary
 
ImageMagick-c++
package type: binary
 
ImageMagick-c++-devel
package type: binary
 
ImageMagick-devel
package type: binary
 
ImageMagick-doc
package type: binary
 
ImageMagick-perl
package type: binary
 
ImageMagick
package type: source
tag: rhel-6-supplementary:bed973f4-9cfe-9d6b-4efd-5501f715a543
redhat-vex
OR
 
ImageMagick
package type: binary
 
ImageMagick-c++
package type: binary
 
ImageMagick-c++-devel
package type: binary
 
ImageMagick-devel
package type: binary
 
ImageMagick-doc
package type: binary
 
ImageMagick-perl
package type: binary
 
ImageMagick
package type: source
tag: rhel-7-extras-including-unpatched:70e434bb-f93d-f0a0-34a8-8b2bd896644e
OR
 
ImageMagick
package type: binary
 
ImageMagick-c++
package type: binary
 
ImageMagick-c++-devel
package type: binary
 
ImageMagick-devel
package type: binary
 
ImageMagick-doc
package type: binary
 
ImageMagick-perl
package type: binary
 
ImageMagick
package type: source
tag: rhel-7-including-unpatched:70e434bb-f93d-f0a0-34a8-8b2bd896644e
OR
 
ImageMagick
package type: binary
 
ImageMagick-c++
package type: binary
 
ImageMagick-c++-devel
package type: binary
 
ImageMagick-devel
package type: binary
 
ImageMagick-doc
package type: binary
 
ImageMagick-perl
package type: binary
 
ImageMagick
package type: source
tag: rhel-7-supplementary:70e434bb-f93d-f0a0-34a8-8b2bd896644e
Data Sources
- RedHat Enterprise Linux CSAF VEX
redhat-vex
