Releases: dlemstra/Magick.NET
Releases · dlemstra/Magick.NET
Magick.NET 14.10.3
Related changes in ImageMagick since the last release of Magick.NET:
- Fixed OpenCL initialization (#1954)
- Heap buffer over-read in WaveletDenoise with small images (https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-qpgx-jfcq-r59f)
- Possible infinite loop in JPEG encoder when using
jpeg:extent(GHSA-gwr3-x37h-h84v) - Infinite loop when writing IPTCTEXT leads to denial of service via crafted profile (GHSA-v994-63cg-9wj3)
- Invalid MSL can result in a use after free (GHSA-w8mw-frc6-r7m8)
- Out of bounds read in djvu decoder (https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-r99p-5442-q2x2)
- Memory allocation with excessive without limits in the internal SVG decoder (GHSA-v7g2-m8c5-mf84)
- Integer overflow or wraparound and incorrect conversion between numeric types in the internal SVG decoder (GHSA-7355-pwx2-pm84)
- Heap overflow in sun decoder on 32-bit systems can result in out of bounds write (GHSA-6j5f-24fw-pqp4)
- Code injection in various encoders (GHSA-rw6c-xp26-225v)
- Global Buffer Overflow (OOB Read) via Negative Pixel Index in UIL and XPM Writer (GHSA-vpxv-r9pg-7gpr)
- Heap-buffer-overflow via signed integer overflow in
WriteUHDRImagewhen writing UHDR images with large dimensions (GHSA-vhqj-f5cj-9x8h) - Memory leak of watermark Image object in ReadSTEGANOImage on multiple error/early-return paths (GHSA-g2pr-qxjg-7r2w)
- NULL pointer dereference in ReadSFWImage after DestroyImageInfo (sfw.c) (GHSA-p33r-fqw2-rqmm)
- Possible memory leak in ASHLAR encoder (GHSA-gm37-qx7w-p258)
- Policy bypass through path traversal allows reading restricted content despite secured policy (GHSA-8jvj-p28h-9gm7)
- Security Policy Bypass through config/policy-secure.xml via "fd handler" leads to stdin/stdout access (GHSA-xwc6-v6g8-pw2h)
- Heap buffer overflow in YUV 4:2:2 decoder (GHSA-mqfc-82jx-3mr2)
- Heap buffer over-read in MAP image decoder (GHSA-42p5-62qq-mmh7)
- NULL Pointer Dereference in ClonePixelCacheRepository via crafted image (GHSA-p863-5fgm-rgq4)
- Division-by-Zero in YUV sampling factor validation leads to crash (GHSA-543g-8grm-9cw6)
- Stack buffer overflow in FTXT reader via oversized integer field (GHSA-72hf-fj62-w6j4)
- MSL image stack index not refreshed leading to leaked images (GHSA-782x-jh29-9mf7)
- MSL attribute stack buffer overflow leads to out of bounds write (GHSA-3mwp-xqp2-q6ph)
- Memory leak in msl encoder (GHSA-gxcx-qjqp-8vjw)
- Memory Leak in coders/ashlar.c (GHSA-xgm3-v4r9-wfgm)
- Signed Integer Overflow in ImageMagick SIXEL Decoder (GHSA-xg29-8ghv-v4xr)
- MSL: Stack overflow in ProcessMSLScript (GHSA-8mpr-6xr2-chhc)
- Heap Out-of-Bounds Read in DCM Decoder (GHSA-pmq6-8289-hx3v)
- Out of bounds read in multiple coders that read raw pixel data (GHSA-jv4p-gjwq-9r2j)
- Use After Free (CWE-416) in MSLStartElement in MSL decoder (GHSA-fwqw-2x5x-w566)
- Possible Heap Information Disclosure in PSD ZIP Decompression (GHSA-96pc-27rx-pr36)
- Converting multi-layer nested MVG to SVG can cause DoS (GHSA-wg3g-gvx5-2pmv)
- An infinite loop vulnerability when parsing a PCD file (GHSA-pqgj-2p96-rx85)
- Heap overflow in pcd decoder leads to out of bounds read (GHSA-wrhr-rf8j-r842)
Library updates:
- ImageMagick 7.1.2-15 (2026-02-22)
- gdk-pixbuf 2.44.5 (2026-01-29)
- harfbuzz 12.3.2 (2026-01-24)
- libheif 1.21.2 (2026-01-16)
- libjxl 0.11.2 (2026-02-10)
- libpng 1.6.55 (2026-02-09)
- libraqm 0.10.4 (2026-02-05)
- openjph 0.26.3 (2026-02-17)
- zlib 1.3.2 (2026-02-17)
Full Changelog: 14.10.2...14.10.3
Magick.NET 14.10.2
Related changes in ImageMagick since the last release of Magick.NET:
- Check if the aspect ratio is a known ratio when density_unit is set to zero and otherwise read it as an undefined density in the jpeg coder (ImageMagick/ImageMagick#8496)
- Converting a PNG to AVIFF with Alpha(AlphaOption.Deactivate) and Scale causes application crash (#1950)
- Release of Invalid Pointer in BilateralBlur when memory allocation fails (GHSA-39h3-g67r-7g3c)
- Memory Leak in LoadOpenCLDeviceBenchmark() when parsing malformed XML (GHSA-qp59-x883-77qv)
- NULL pointer dereference in MSL parser via tag before image load (GHSA-5vx3-wx4q-6cj8)
- MSL: Stack overflow via infinite recursion in ProcessMSLScript (GHSA-9vj4-wc7r-p844)
- Heap buffer overflow with attacker-controlled data in XBM parser (GHSA-r49w-jqq3-3gx8)
Library updates:
- ImageMagick 7.1.2-13 (2026-01-19)
- harfbuzz 12.3.0 (2025-12-27)
- libheif 1.21.1 (2025-12-31)
- lcms 2.18.0 (2026-01-09)
- openjph 0.26.0 (2025-12-24)
- libraw 0.22.0 (2026-01-13)
Full Changelog: 14.10.1...14.10.2
Magick.NET 14.10.1
Related changes in ImageMagick since the last release of Magick.NET:
- Only allow setting the data_precision to values other then 16 and 12 when quality is lossless (>= 100) in the jpeg coder.
- Revert patches to solve ImageMagick/ImageMagick#8484 and ImageMagick/ImageMagick#8506.
- Magick's failure to limit the depth of SVG file reads caused a DoS attack (GHSA-p27m-hp98-6637)
- Magick's failure to limit MVG mutual references forming a loop (GHSA-7rvh-xqp3-pr8j)
- Converting a malicious MVG file to SVG caused an integer overflow (GHSA-hrh7-j8q2-4qcw)
Library updates:
- ImageMagick 7.1.2-12 (2025-12-29)
- libjpeg-turbo 3.1.3 (2025-12-10)
- liblzma 5.8.2 (2025-12-17)
- libpng 1.6.53 (2025-12-05)
Full Changelog: 14.10.0...14.10.1
Magick.NET 14.10.0
What's Changed
- Allow specifying the pdf format in the constructor of the PdfWriteDefines (#1931).
- Added
HighBitDepthto theJpegWriteDefines.
Related changes in ImageMagick since the last release of Magick.NET:
- Move writing of the IDAT chunk to the end to silence a warning in exiftool (ImageMagick/ImageMagick#8400)
- Added custom end of file check to the pnm encoder to allow a missing final newline (ImageMagick/ImageMagick#8425)
- Close temporary file to make sure it can be opened again (ImageMagick/ImageMagick#8420)
- JPEG: Support 2-to-16-bit lossless JPEG images with libjpeg-turbo 3.1+; Support additional IDCT scaling factors with libjpeg-turbo and libjpeg v7+ (ImageMagick/ImageMagick#8445)
- Correct parsing of the density ((ImageMagick/ImageMagick#8460)
- Added extra check to avoid an overflow on 32-bit machines (GHSA-6hjr-v6g4-3fm8)
Library updates:
- ImageMagick 7.1.2-10 (2025-12-07)
- brotli 1.2.0 (2025-10-27)
- openexr 3.4.4 (2025-11-19)
- harfbuzz 12.2.0 (2025-11-05)
- openjph 0.25.3 (2025-11-16)
- libpng 1.6.52 (2025-12-03)
- REMOVED: libdeflate (#1932)
Full Changelog: 14.9.1...14.10.0
Magick.NET 14.9.1
What's Changed
Related changes in ImageMagick since the last release of Magick.NET:
- CLAHE : Unsigned underflow and division-by-zero lead to OOB pointer arithmetic and process crash (DoS) (GHSA-wpp4-vqfq-v4hp)
Library updates:
- ImageMagick 7.1.2-8 (2025-10-28)
- openexr 3.4.2 (2025-10-16)
- gdk-pixbuf 2.44.4 (2025-10-21)
- imath 3.2.2 (2025-10-08)
- libxml2 2.15.1 (2025-10-16)
Full Changelog: 14.8.2...14.9.0
Magick.NET 14.9.0
What's Changed
- Converting Tif file with 2 alpha channels yields scrambled result. #1523
- Embedded base64 image not rendered when converting SVG on Linux RHEL (regression since 14.7.1) #1917
- Allow setting the
StrokeDashArrayof theDrawingSettingstonull. - Moved static properties in
ColorProfileto a newColorProfilesclass and mark them obsolete.
Related changes in ImageMagick since the last release of Magick.NET:
- Fix issue where the size of a line is extended to 70 characters when writing a PBM image (ImageMagick/ImageMagick#8346).
- Extra images will be added as meta channels when combining images.
- Added support for reading and writing meta channels in a TIFF images with separate planes of data.
- Promote photometric tiff tag to required
- Added extra check to resolve issue on 32-bit systems (GHSA-9pp9-cfwx-54rm)
Library updates:
- ImageMagick 7.1.2-7 (2025-10-15)
- aom 3.13.1 (2025-09-05)
- openexr 3.4.0 (2025-09-05)
- freetype 2.14.1 (2024-09-11)
- gdk-pixbuf 2.44.3 (2025-09-30)
- harfbuzz 12.1.0 (2025-10-01)
- libjpeg-turbo 3.1.2 (2025-09-03)
- openjpeg 2.5.4 (2025-09-20)
- libtiff 4.7.1 (2025-09-12)
- libxml2 2.15.0 (2025-09-15)
Full Changelog: 14.8.2...14.9.0
Magick.NET 14.8.2
What's Changed
- Corrected the generated version and added a unit test for it (#1894).
- Fixed missing embedded resources in the native library (#1896 and #1898).
Related changes in ImageMagick since the last release of Magick.NET:
- Close the blob so we can re-open it again (ImageMagick/ImageMagick#8327).
Library updates:
- ImageMagick 7.1.2-3 (2025-08-31)
- harfbuzz 11.4.4 (2025-08-26)
Full Changelog: 14.8.1...14.8.2
Magick.NET 14.8.1
What's Changed
- Corrected
Gravityoverload of theSplicemethod (#1881).
Related changes in ImageMagick since the last release of Magick.NET:
- Fixed reading exif profiles from jpeg images (#1891 and #1809)
- Added support for reading 8 bit alpha only dds images (ImageMagick/ImageMagick#8178)
- Fix infinite loop when decoding JXL with
-limit height/width(ImageMagick/ImageMagick#8303) - Corrected getting the screenshot on Windows when the screen is scaled larger than 100% (ImageMagick/ImageMagick#8278).
- Change the colorspace to GrayScale when an exr image only has a single Y channel (ImageMagick/ImageMagick#8305)
Library updates:
- ImageMagick 7.1.2-2 (2025-08-24)
- ffi 3.5.2 (2025-08-02)
- harfbuzz 11.4.1 (2025-08-13)
- heif 1.20.2 (2025-08-05)
- highway 1.3.0 (2025-08-14)
- imath 3.2.1 (2025-08-15)
- raqm 0.10.3 (2025-08-05)
Full Changelog: 14.8.0...14.8.1
Magick.NET 14.8.0
What's Changed
- Added
Sf3toMagickFormat. - Added
Gravityoverload to theSplicemethod (#1881). - Added
TrimMemoryto theResourceLimits(#1854).
Library updates:
- ImageMagick 7.1.2-1 (2025-08-12)
- exr 3.3.5 (2025-07-26)
- ffi 3.5.1 (2025-06-10)
- fontconfig 2.17.1 (2025-07-02)
- gdk-pixbuf 2.43.3 (2025-06-29)
- jpeg-turbo 3.1.1 (2025-06-10)
- pixman 0.46.4 (2025-07-20)
- png 1.6.50 (2025-07-02)
- webp 1.6.0 (2025-07-09)
- xml 2.14.5 (2025-07-10)
- zip 1.11.4 (2025-05-23)
Full Changelog: 14.7.0...14.8.0
Magick.NET 14.7.0
What's Changed
- Added extra overload to the
Resizemethod that allows specifying the filter (#1819). - Allow reading of clip paths without a name and give them a numeric name that can be used by ImageMagick (#1814).
- Use the
ArrayPoolAPI in .NET Standard 2.1 or later to reduce the creation of LOH objects (#1812). - Allow modification of
XandYin thePointDstruct (#1856). - Improved parsing of a geometry in the
MagickGeometryclass (#1855). - Added
IcntoMagickFormat.
Related changes in ImageMagick since the last release of Magick.NET:
- Fixed pageCount failure in newer versions of ghostscript (#1823).
- Improved PDF/A compatibility (#1841).
- Fixed reading of bmp files (#1820).
- Accelerated Subimage-search Compare (ImageMagick/ImageMagick#3950)
- Request Enhancement To Magick Compare -metric MSE (ImageMagick/ImageMagick#5750)
- JXL: Preserve ICC profile for lossless encoding (ImageMagick/ImageMagick#8074)
- Support ICN file extension for old Windows icons (ImageMagick/ImageMagick#8107)
Library updates:
- ImageMagick 7.1.2-0 (2025-07-13)
- aom 3.12.1 (2025-04-11)
- de265 1.0.16 (2025-05-04)
- deflate 1.24.0 (2025-05-11)
- ffi 3.4.8 (2025-04-10)
- harfbuzz 11.2.1 (2025-05-15)
- heif 1.20.1 (2025-07-02)
- lzma 5.8.1 (2025-04-03)
- openexr 3.3.3 (2025-03-24)
- pixman 0.46.0 (2025-04-30)
- png 1.6.48 (2025-04-30)
- raw 0.22.0-Devel202502 (2024-02-24)
- xml 2.14.3 (2025-05-13)
Full Changelog: 14.6.0...14.7.0