CVE-2025-57803

CVE-2025-57803

Name

CVE-2025-57803

Description

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2 for ImageMagick's 32-bit build, a 32-bit integer overflow in the BMP encoder’s scanline-stride computation collapses bytes_per_line (stride) to a tiny value while the per-row writer still emits 3 × width bytes for 24-bpp images. The row base pointer advances using the (overflowed) stride, so the first row immediately writes past its slot and into adjacent heap memory with attacker-controlled bytes. This is a classic, powerful primitive for heap corruption in common auto-convert pipelines. This issue has been patched in versions 6.9.13-28 and 7.1.2-2.

NVD Severity

medium

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
MISC	https://github.com/ImageMagick/ImageMagick/commit/2c55221f4d38193adcb51056c14cf238fbcc35d7
CONFIRM	https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-mxvv-97wh-cfmm
MISC	https://github.com/dlemstra/Magick.NET/releases/tag/14.8.1
af854a3a-2127-422b-91ae-364da2661108	https://lists.debian.org/debian-lts-announce/2025/09/msg00012.html

Type

URI

MISC

https://github.com/ImageMagick/ImageMagick/commit/2c55221f4d38193adcb51056c14cf238fbcc35d7

CONFIRM

https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-mxvv-97wh-cfmm

MISC

https://github.com/dlemstra/Magick.NET/releases/tag/14.8.1

af854a3a-2127-422b-91ae-364da2661108

https://lists.debian.org/debian-lts-announce/2025/09/msg00012.html

CPE URI	Source package	Min version	Max version
	imagemagick	>= 0	< 7.1.2-2
	imagemagick	>= 0	< 6.9.13-28

CPE URI

Source package

Min version

Max version

imagemagick

>= 0

< 7.1.2-2

imagemagick

>= 0

< 6.9.13-28

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
imagemagick	edge-community	7.1.1.41-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
imagemagick	edge-community	7.1.1.43-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
imagemagick	edge-community	7.1.1.44-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
imagemagick	edge-community	7.1.1.44-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
imagemagick	edge-community	7.1.1.44-r2	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
imagemagick	edge-community	7.1.1.44-r3	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
imagemagick	edge-community	7.1.1.44-r4	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
imagemagick	edge-community	7.1.2.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
imagemagick	edge-community	7.1.2.1-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
imagemagick	edge-community	7.1.2.1-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
imagemagick	edge-community	7.1.2.2-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
imagemagick	3.22-community	7.1.1.41-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
imagemagick	3.22-community	7.1.2.0-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
imagemagick	edge-community	7.1.2.3-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
imagemagick	edge-community	7.1.2.3-r1	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
imagemagick	3.22-community	7.1.2.3-r0	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
imagemagick	edge-community	7.1.2.3-r2	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable
imagemagick	edge-community	7.1.2.3-r3	Natanael Copa <ncopa@alpinelinux.org>	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

References

Match rules

Vulnerable and fixed packages