Overview

File ImageMagick-CVE-2026-23874.patch of Package ImageMagick.42529

From 2a09644b10a5b146e0a7c63b778bd74a112ebec3 Mon Sep 17 00:00:00 2001
From: Cristy <urban-warrior@imagemagick.org>
Date: Thu, 15 Jan 2026 17:50:19 -0500
Subject: [PATCH] MSL: Stack overflow via infinite recursion in
 ProcessMSLScript

---
 coders/msl.c | 16 +++++++++++++---
 1 file changed, 13 insertions(+), 3 deletions(-)

Index: ImageMagick-7.1.1-21/coders/msl.c
===================================================================
--- ImageMagick-7.1.1-21.orig/coders/msl.c
+++ ImageMagick-7.1.1-21/coders/msl.c
@@ -7357,9 +7357,19 @@ static void MSLStartElement(void *contex
 
           /* process */
           {
-            *msl_info->image_info[n]->magick='\0';
-            (void) WriteImage(msl_info->image_info[n], msl_info->image[n],
-              msl_info->exception);
+            (void) CopyMagickString(msl_info->image_info[n]->filename,
+              msl_info->image[n]->filename,MagickPathExtent);
+            (void) SetImageInfo(msl_info->image_info[n],1,exception);
+            if (LocaleCompare(msl_info->image_info[n]->magick,"msl") != 0)
+              {
+                *msl_info->image_info[n]->magick='\0';
+                (void) WriteImage(msl_info->image_info[n],msl_info->image[n],
+                  msl_info->exception);
+              }
+            else
+              (void) ThrowMagickException(msl_info->exception,GetMagickModule(),
+                FileOpenError,"UnableToWriteFile","`%s'",
+                msl_info->image[n]->filename);
             break;
           }
         }
openSUSE Build Service is sponsored by
Places