Memory Leak Vulnerability in ImageMagick's ICON Decoder
CVE-2026-61871
6.3MEDIUM
What is CVE-2026-61871?
A memory leak has been identified in ImageMagick's ICON decoder, present in versions prior to 7.1.2-26 and 6.9.13-51. This flaw occurs when a memory allocation fails while processing a crafted ICON file, allowing attackers to exploit this issue and potentially cause a denial of service. Users are urged to upgrade to the latest versions to mitigate the risks associated with this vulnerability.
Affected Version(s)
ImageMagick 0 < 7.1.2-26
ImageMagick 0 < 6.9.13-51
ImageMagick 7.1.2-26