Integer overflow in ImageMagick - CVE-2026-62946
Published: July 15, 2026
ImageMagick
Detailed vulnerability description
The vulnerability allows a remote attacker to cause a denial of service or execute arbitrary code.
The vulnerability exists due to integer overflow in the JNX decoder when parsing an extremely large JNX file on 32-bit builds. A remote attacker can supply a specially crafted JNX file to cause a denial of service or execute arbitrary code.
Only 32-bit builds are vulnerable.