Overview

File ImageMagick-CVE-2026-23874.patch of Package ImageMagick.42534

From fe2970bbbe02c6fe875cc2b269390a3165d57706 Mon Sep 17 00:00:00 2001
From: Cristy <urban-warrior@imagemagick.org>
Date: Thu, 15 Jan 2026 17:50:16 -0500
Subject: [PATCH] MSL: Stack overflow via infinite recursion in
 ProcessMSLScript

---
 coders/msl.c | 14 ++++++++++++--
 1 file changed, 12 insertions(+), 2 deletions(-)

Index: ImageMagick-6.8.8-1/coders/msl.c
===================================================================
--- ImageMagick-6.8.8-1.orig/coders/msl.c
+++ ImageMagick-6.8.8-1/coders/msl.c
@@ -7353,7 +7353,18 @@ static void MSLStartElement(void *contex
 
           /* process */
           {
-            (void) WriteImage(msl_info->image_info[n], msl_info->image[n]);
+            (void) CopyMagickString(msl_info->image_info[n]->filename,
+              msl_info->image[n]->filename,MaxTextExtent);
+            (void) SetImageInfo(msl_info->image_info[n],1,&exception);
+            if (LocaleCompare(msl_info->image_info[n]->magick,"msl") != 0)
+              {
+                *msl_info->image_info[n]->magick='\0';
+                (void) WriteImage(msl_info->image_info[n],msl_info->image[n]);
+              }
+            else
+              (void) ThrowMagickException(msl_info->exception,GetMagickModule(),
+                FileOpenError,"UnableToWriteFile","`%s'",
+                msl_info->image[n]->filename);
             break;
           }
         }
openSUSE Build Service is sponsored by
Places