Release date:
2026-06-16 10:34:10 UTC
Description:
- CVE-2026-45358: off-by-one out-of-bounds read in the meta (8BIM/IPTC) encoder
- CVE-2026-46559: heap buffer over-write of a single byte in the JP2 encoder
- CVE-2026-49218: missing dimension check in the DCM decoder (zero rows/columns)
- CVE-2026-53461: heap buffer over-write in the ICON decoder due to an incorrect loop bound
- CVE-2026-53463: NULL pointer dereference in the distort operation on missing arguments
- CVE-2026-53460: missing maximum-memory-request check in AcquireAlignedMemory
- CVE-2026-46692: heap buffer over-write in the distributed pixel cache server
- CVE-2026-46693: file-descriptor hijacking race in the distributed pixel cache server
- CVE-2026-47166: heap buffer over-read in the distributed pixel cache server
Updated packages:
-
ImageMagick-6.9.13.25-1.el8.tuxcare.els32.x86_64.rpm
sha:ac517abce1d0634ba4f9dbe339d7c88dc0865677e3e6e3b0f3519a018c59f623
-
ImageMagick-c++-6.9.13.25-1.el8.tuxcare.els32.x86_64.rpm
sha:4045ed53922c8b73b77446864d0dc47605cfc7514b0422d5c535ed641187c97c
-
ImageMagick-c++-devel-6.9.13.25-1.el8.tuxcare.els32.x86_64.rpm
sha:4f47353ef5c497efcf34e5847fdaf2216d742b6780f6a381924a6bb5f5cbe52a
-
ImageMagick-devel-6.9.13.25-1.el8.tuxcare.els32.x86_64.rpm
sha:7a789b78b3b7b8153f993795039b5d0319c9883ddb5871c5fbafafaeddcac19c
-
ImageMagick-djvu-6.9.13.25-1.el8.tuxcare.els32.x86_64.rpm
sha:94cb61e8e793369747148ddf12074416fe2b3f10f48df5c45f899a5bb6a872e1
-
ImageMagick-doc-6.9.13.25-1.el8.tuxcare.els32.x86_64.rpm
sha:5c15ca877af9f478b4d8d8251235891e5879ef7c220230eb009978b9e583ab8f
-
ImageMagick-libs-6.9.13.25-1.el8.tuxcare.els32.x86_64.rpm
sha:a2ce38a616598eaa1d99e2be016d0beafdfdb981f950c863722e728e5d671ab0
-
ImageMagick-perl-6.9.13.25-1.el8.tuxcare.els32.x86_64.rpm
sha:11126081133f2aa687c11e2f40b7880f558aca0f7df4bf735c4b40ce9dfc7d70
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
