CVE-2025-55005

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, when preparing to transform from Log to sRGB colorspaces, the logmap construction fails to handle cases where the reference-black or reference-white value is larger than 1024. This leads to corrupting memory beyond the end of the allocated logmap buffer. This issue has been patched in version 7.1.2-1.

Published: Aug 13, 2025
Updated: Aug 16, 2025
CVE: CVE-2025-55005
Exploit:

No technical information available.

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
imagemagick / imagemagick	-	7.1.2-1

https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-v393-38qx-v8fp
https://goo.gle/bigsleep

Vulnerability Database

CVE-2025-55005