CVE-2026-25986 | ImageMagick up to 6.9.13-39/7.1.2-14 Image Parser coders/yuv.c ReadYUVImage out-of-bounds write (GHSA-mqfc-82jx-3mr2)

A vulnerability classified as critical was found in ImageMagick up to 6.9.13-39/7.1.2-14. Affected by this issue is the function ReadYUVImage of the file coders/yuv.c of the component Image Parser. Such manipulation leads to out-of-bounds write.

This vulnerability is referenced as CVE-2026-25986. It is possible to launch the attack remotely. No exploit is available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More