CVE-2025-53019: ImageMagick has a Memory Leak in magick stream
In ImageMagick’s magick stream command, specifying multiple consecutive %d format specifiers in a filename template causes a memory leak.
References
- github.com/ImageMagick/ImageMagick
- github.com/ImageMagick/ImageMagick/commit/fc3ab0812edef903bbb2473c0ee652ddfd04fe5c
- github.com/ImageMagick/ImageMagick/security/advisories/GHSA-cfh4-9f7v-fhrc
- github.com/ImageMagick/ImageMagick6/commit/d49460522669232159c2269fa64f73ed30555c1b
- github.com/advisories/GHSA-cfh4-9f7v-fhrc
- github.com/dlemstra/Magick.NET/releases/tag/14.7.0
- nvd.nist.gov/vuln/detail/CVE-2025-53019
Code Behaviors & Features
Detect and mitigate CVE-2025-53019 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →