CVE-2025-27796

CVE-2025-27796

Name

CVE-2025-27796

Description

ReadWPGImage in WPG in GraphicsMagick before 1.3.46 mishandles palette buffer allocation, resulting in out-of-bounds access to heap memory in ReadBlob.

NVD Severity

medium

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
cve@mitre.org	http://www.graphicsmagick.org/NEWS.html
cve@mitre.org	https://sourceforge.net/p/graphicsmagick/bugs/750/
cve@mitre.org	https://foss.heptapod.net/graphicsmagick/graphicsmagick/-/commit/883ebf8cae6dfa5873d975fe3476b1a188ef3f9f

Type

URI

cve@mitre.org

http://www.graphicsmagick.org/NEWS.html

cve@mitre.org

https://sourceforge.net/p/graphicsmagick/bugs/750/

cve@mitre.org

https://foss.heptapod.net/graphicsmagick/graphicsmagick/-/commit/883ebf8cae6dfa5873d975fe3476b1a188ef3f9f

CPE URI	Source package	Min version	Max version
	graphicsmagick	>= 0	< 1.3.46

CPE URI

Source package

Min version

Max version

graphicsmagick

>= 0

< 1.3.46

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
graphicsmagick	edge-community	1.3.45-r1	Francesco Colista <fcolista@alpinelinux.org>	possibly vulnerable
graphicsmagick	edge-community	1.3.45-r0	Francesco Colista <fcolista@alpinelinux.org>	possibly vulnerable
graphicsmagick	edge-community	1.3.38-r0	Francesco Colista <fcolista@alpinelinux.org>	possibly vulnerable
graphicsmagick	edge-community	1.3.35-r2	None	possibly vulnerable
graphicsmagick	edge-community	1.3.35-r0	None	possibly vulnerable
graphicsmagick	edge-community	1.3.32-r0	None	possibly vulnerable
graphicsmagick	edge-community	1.3.30-r0	None	possibly vulnerable
graphicsmagick	edge-community	1.3.29-r0	None	possibly vulnerable
graphicsmagick	edge-community	1.3.28-r0	None	possibly vulnerable
graphicsmagick	edge-community	1.3.27-r0	None	possibly vulnerable
graphicsmagick	edge-community	1.3.26-r5	None	possibly vulnerable
graphicsmagick	edge-community	1.3.26-r3	None	possibly vulnerable
graphicsmagick	edge-community	1.3.26-r2	None	possibly vulnerable
graphicsmagick	edge-community	1.3.26-r0	None	possibly vulnerable
graphicsmagick	edge-community	1.3.25-r2	None	possibly vulnerable
graphicsmagick	edge-community	1.3.25-r0	None	possibly vulnerable
graphicsmagick	3.22-community	1.3.45-r0	Francesco Colista <fcolista@alpinelinux.org>	possibly vulnerable
graphicsmagick	3.22-community	1.3.38-r0	None	possibly vulnerable
graphicsmagick	3.22-community	1.3.35-r2	None	possibly vulnerable
graphicsmagick	3.22-community	1.3.35-r0	None	possibly vulnerable
graphicsmagick	3.22-community	1.3.32-r0	None	possibly vulnerable
graphicsmagick	3.22-community	1.3.30-r0	None	possibly vulnerable
graphicsmagick	3.22-community	1.3.29-r0	None	possibly vulnerable
graphicsmagick	3.22-community	1.3.28-r0	None	possibly vulnerable
graphicsmagick	3.22-community	1.3.27-r0	None	possibly vulnerable
graphicsmagick	3.22-community	1.3.26-r5	None	possibly vulnerable
graphicsmagick	3.22-community	1.3.26-r3	None	possibly vulnerable
graphicsmagick	3.22-community	1.3.26-r2	None	possibly vulnerable
graphicsmagick	3.22-community	1.3.26-r0	None	possibly vulnerable
graphicsmagick	3.22-community	1.3.25-r2	None	possibly vulnerable
graphicsmagick	3.22-community	1.3.25-r0	None	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

graphicsmagick

edge-community

1.3.45-r1

Francesco Colista <fcolista@alpinelinux.org>

possibly vulnerable

graphicsmagick

edge-community