A heap buffer over-read vulnerability occurs when processing an image with small dimension using the -wavelet-denoise operator.
==3693336==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x511000001280 at pc 0x5602c8b0cc75 bp 0x7ffcb105d510 sp 0x7ffcb105d500
READ of size 4 at 0x511000001280 thread T0
{
"nvd_published_at": "2026-02-26T00:16:25Z",
"severity": "MODERATE",
"github_reviewed_at": "2026-02-25T19:24:05Z",
"cwe_ids": [
"CWE-125",
"CWE-126"
],
"github_reviewed": true
}