Release date:
2026-06-16 10:26:55 UTC
Description:
- CVE-2026-45358: off-by-one out-of-bounds read in the meta (8BIM/IPTC) encoder
- CVE-2026-46559: heap buffer over-write of a single byte in the JP2 encoder
- CVE-2026-49218: missing dimension check in the DCM decoder (zero rows/columns)
- CVE-2026-53461: heap buffer over-write in the ICON decoder due to an incorrect loop bound
- CVE-2026-53463: NULL pointer dereference in the distort operation on missing arguments
- CVE-2026-53460: missing maximum-memory-request check in AcquireAlignedMemory
- CVE-2026-46692: heap buffer over-write in the distributed pixel cache server
- CVE-2026-46693: file-descriptor hijacking race in the distributed pixel cache server
- CVE-2026-47166: heap buffer over-read in the distributed pixel cache server
Updated packages:
-
ImageMagick-6.9.13.25-1.el8.tuxcare.els32.x86_64.rpm
sha:485d54fc4cbe1b7a6e6b4529b03c57ded751b72ac69cff6034d115abad77a79b
-
ImageMagick-c++-6.9.13.25-1.el8.tuxcare.els32.x86_64.rpm
sha:f4b9e185648241dea4e0e44686b5cf130d3cb6eb8c3e36ed5db92626fda1aa49
-
ImageMagick-c++-devel-6.9.13.25-1.el8.tuxcare.els32.x86_64.rpm
sha:665f769973520a3987107f04e9ba69adc096d550a6fb812f0a159d54f0056c86
-
ImageMagick-devel-6.9.13.25-1.el8.tuxcare.els32.x86_64.rpm
sha:a5038316254fe9cff8e07a0f8e09c45c7a88c9f9e69193887a0d2be77e38ac22
-
ImageMagick-djvu-6.9.13.25-1.el8.tuxcare.els32.x86_64.rpm
sha:ebc6a3549129ba2875c9c908b51af7482718d778f0f6e477d090b2924d274c8f
-
ImageMagick-doc-6.9.13.25-1.el8.tuxcare.els32.x86_64.rpm
sha:3895a6c0c773bed78777ded13a5cc4bb62b11662a6630874797a7cec5fc45cad
-
ImageMagick-libs-6.9.13.25-1.el8.tuxcare.els32.x86_64.rpm
sha:9b3fe0558ca30d7c53380398cb5f0e5b87bd89f46f30043d548eb8ed736bcf2a
-
ImageMagick-perl-6.9.13.25-1.el8.tuxcare.els32.x86_64.rpm
sha:c289233c821ba4f171cec6b80ba9541ba994cbc9199b3332c5894d5f573ae2e1
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
