[CLSA-2026:1782138366] ImageMagick: Fix of CVE-2026-49219
Type:
security
Severity:
None
Release date:
2026-06-22 14:26:17 UTC
Description:
- CVE-2026-49219: enforce the path security policy across followed symlinks in magick/blob.c so a symlink can no longer bypass a path-domain deny rule and disclose a restricted file
Updated packages:
  • ImageMagick-6.9.13.25-1.el8.tuxcare.els33.x86_64.rpm
    sha:a279ab9b31945889b559587dfa7bb4eeac48e74d0635aa77a7e16df434b296c7
  • ImageMagick-c++-6.9.13.25-1.el8.tuxcare.els33.x86_64.rpm
    sha:3fbc107fa3fd7dcbf69e08220e1bbc271955ad456a289bcdd649a22d75cd3d8e
  • ImageMagick-c++-devel-6.9.13.25-1.el8.tuxcare.els33.x86_64.rpm
    sha:7acad3d4fd6c1599c33b6ee35ce6904c8fdce5c0fce67ccd9e880911fbc2f688
  • ImageMagick-devel-6.9.13.25-1.el8.tuxcare.els33.x86_64.rpm
    sha:196714cbc6dd20095b4a426a36463a729b445ef4fe66c431ef95b8503ddc68c0
  • ImageMagick-djvu-6.9.13.25-1.el8.tuxcare.els33.x86_64.rpm
    sha:8314a439c2693cc141fe404049422e6ba56e9753a89d72ec40f544c8ff6f0910
  • ImageMagick-doc-6.9.13.25-1.el8.tuxcare.els33.x86_64.rpm
    sha:dbca072de11003436033aa10966f098ab2776c5ef6d9ebb520385a2297235de7
  • ImageMagick-libs-6.9.13.25-1.el8.tuxcare.els33.x86_64.rpm
    sha:cf1ead72f20d38bc32a05883a10bef36c5f1bff3f2262380a8de17c2a266b974
  • ImageMagick-perl-6.9.13.25-1.el8.tuxcare.els33.x86_64.rpm
    sha:db43da02348630326d52954daa5182b2c9259154f8c51fe6fbef25879545fc23
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.