YoyaWiki

CVE/ImageMagick

• https://nvd.nist.gov/vuln/detail/CVE-2025-46393

  In multispectral MIFF image processing in ImageMagick before 7.1.1-44, packet_size is mishandled (related to the rendering of all channels in an arbitrary order).

• https://github.com/ImageMagick/ImageMagick/commit/81ac8a0d2eb21739842ed18c48c7646b7eef65b8

+   if (image->number_meta_channels != 0)
+     packet_size=GetImageChannels(image)*image->depth/8;

• https://github.com/ImageMagick/Website/blob/main/ChangeLog.md#711-44---2025-02-22