Description
ImageMagick is free and open-source software used for editing and manipulating digital images. The BilateralBlurImage method will allocate a set of double buffers inside AcquireBilateralTLS. But, in versions prior to 7.1.2-13, the last element in the set is not properly initialized. This will result in a release of an invalid pointer inside DestroyBilateralTLS when the memory allocation fails. Version 7.1.2-13 contains a patch for the issue.
Published: 2026-01-20
Score: 6.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Denial of Service
Action: Patch
AI Analysis

Impact

This vulnerability arises in ImageMagick versions older than 7.1.2‑13 when the BilateralBlurImage method allocates a set of double buffers. The last buffer in the set is not initialized correctly. When a memory allocation fails, the invalid pointer is later released during DestroyBilateralTLS, causing a segmentation fault. The weakness can be identified as an improper release of memory resources (CWE‑763). Compromise can result in application crashes that lead to denial of service.

Affected Systems

The affected product is ImageMagick. Any installation that is not at least version 7.1.2‑13 is vulnerable. The vulnerability affects all platforms where ImageMagick executes the BilateralBlurImage function, including command‑line tools and libraries used in image processing pipelines.

Risk and Exploitability

The CVSS score is 6.5, indicating moderate severity. The EPSS score is below 1%, indicating a very low expected exploitation probability, and the vulnerability is not listed in the CISA KEV catalog. The likely attack vector is local or remote via a crafted image that triggers the BilateralBlurImage routine, which would cause the application to crash. Although the description does not confirm remote code execution, the presence of a faulty pointer release could destabilize the process if the attacker can influence memory allocation outcomes. Current mitigations rely on patching.

Generated by OpenCVE AI on April 18, 2026 at 04:53 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the ImageMagick 7.1.2‑13 patch or later to fix the pointer release bug.
  • If an upgrade cannot be applied immediately, stop using BilateralBlurImage on untrusted images or disable the function in application logic until the patch is applied.
  • After applying the patch or disabling the function, restart all dependent services and monitor logs for any segmentation faults or crash events.

Generated by OpenCVE AI on April 18, 2026 at 04:53 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-6111-1 imagemagick security update
Github GHSA Github GHSA GHSA-39h3-g67r-7g3c ImageMagick releases an invalid pointer in BilateralBlur when memory allocation fails
History

Thu, 29 Jan 2026 15:00:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*

Wed, 21 Jan 2026 20:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 20 Jan 2026 12:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 threat_severity

Moderate

Tue, 20 Jan 2026 08:45:00 +0000

Type Values Removed Values Added
First Time appeared Imagemagick
Imagemagick imagemagick
Vendors & Products Imagemagick
Imagemagick imagemagick

Tue, 20 Jan 2026 01:15:00 +0000

Type Values Removed Values Added
Description ImageMagick is free and open-source software used for editing and manipulating digital images. The BilateralBlurImage method will allocate a set of double buffers inside AcquireBilateralTLS. But, in versions prior to 7.1.2-13, the last element in the set is not properly initialized. This will result in a release of an invalid pointer inside DestroyBilateralTLS when the memory allocation fails. Version 7.1.2-13 contains a patch for the issue.
Title ImageMagick vulnerable to Release of Invalid Pointer in BilateralBlur when memory allocation fails
Weaknesses CWE-763
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H'}

Subscriptions

Imagemagick Imagemagick
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-01-21T20:10:46.858Z

Reserved: 2026-01-09T18:27:19.387Z

Link: CVE-2026-22770

cve-icon Vulnrichment

Updated: 2026-01-21T20:08:55.135Z

cve-icon NVD

Status : Analyzed

Published: 2026-01-20T01:15:57.153

Modified: 2026-01-29T14:56:04.840

Link: CVE-2026-22770

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-01-20T00:48:19Z

Links: CVE-2026-22770 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-18T05:00:06Z

Weaknesses