{"id":"JLSEC-2026-495","summary":"GraphicsMagick before 8e56520 has a heap-based buffer over-read in ReadJXLImage in coders/jxl.c,...","details":"GraphicsMagick before 8e56520 has a heap-based buffer over-read in ReadJXLImage in coders/jxl.c, related to an ImportViewPixelArea call.","modified":"2026-05-13T02:02:51.318545064Z","published":"2026-05-13T01:42:44.063Z","upstream":["CVE-2025-32460","EUVD-2025-10418","GHSA-hf7q-qx98-4hm7"],"database_specific":{"sources":[{"modified":"2026-01-29T20:34:53.740Z","imported":"2026-05-13T00:52:49.799Z","database_specific":{"status":"Analyzed"},"url":"https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2025-32460","id":"CVE-2025-32460","published":"2025-04-09T02:15:15.137Z","html_url":"https://nvd.nist.gov/vuln/detail/CVE-2025-32460"},{"modified":"2025-04-09T04:18:30Z","imported":"2026-05-13T00:52:55.130Z","url":"https://api.github.com/advisories/GHSA-hf7q-qx98-4hm7","id":"GHSA-hf7q-qx98-4hm7","published":"2025-04-09T04:18:20Z","html_url":"https://github.com/advisories/GHSA-hf7q-qx98-4hm7"},{"modified":"2025-04-09T19:27:10Z","imported":"2026-05-13T00:52:53.272Z","url":"https://euvdservices.enisa.europa.eu/api/enisaid?id=EUVD-2025-10418","id":"EUVD-2025-10418","published":"2025-04-09T00:00:00Z","html_url":"https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-10418"}],"license":"CC-BY-4.0"},"references":[{"type":"WEB","url":"https://foss.heptapod.net/graphicsmagick/graphicsmagick/-/commit/8e56520435df50f618a03f2721a39a70a515f1cb"},{"type":"WEB","url":"https://github.com/advisories/GHSA-hf7q-qx98-4hm7"},{"type":"WEB","url":"https://issues.oss-fuzz.com/issues/406320404"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-32460"},{"type":"WEB","url":"https://tracker.debian.org/news/1636753/accepted-graphicsmagick-14really1345hg17696-1-source-into-unstable"},{"type":"WEB","url":"https://tracker.debian.org/news/1636753/accepted-graphicsmagick-14really1345hg17696-1-source-into-unstable/"}],"affected":[{"package":{"name":"GraphicsMagick_jll","ecosystem":"Julia","purl":"pkg:julia/GraphicsMagick_jll?uuid=aa65733b-c888-5e24-8545-c87abc10c960"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"1.3.47+0"}]}],"database_specific":{"source":"https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2026/JLSEC-2026-495.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}]}