[CLSA-2026:1783688796] imagemagick: Fix of 3 CVEs
Type:
security
Severity:
Important
Release date:
2026-07-10 13:06:56 UTC
Description:
7.1.1.13.tuxcare.els17-r0: - CVE-2026-56361 off-by-one heap over-read in morphology kernel argument validation - CVE-2026-56368 memory leak in raw pixel-data coders (bgr/cmyk/gray/rgb/ycbcr) on blob-open failure - CVE-2026-56370 out-of-bounds access in ConnectedComponentsImage via invalid connected-components index
Updated packages:
  • imagemagick-7.1.1.13.tuxcare.els17-r0.apk
    sha:Q1vyCpQ73VpTCy3yxKQNWO2s+eo2g=
  • imagemagick-7.1.1.13.tuxcare.els17-r0.apk
    sha:Q19UAeEH2/JKhRacWFV8Nfoij1oBc=
  • imagemagick-c++-7.1.1.13.tuxcare.els17-r0.apk
    sha:Q1PnidmvqfMcjGE/k6hHkK8s3Mr7Y=
  • imagemagick-c++-7.1.1.13.tuxcare.els17-r0.apk
    sha:Q1TQmjhcaO9DR4U4nJhJ+Yh1VaAcU=
  • imagemagick-dev-7.1.1.13.tuxcare.els17-r0.apk
    sha:Q1UV1yIqlq8IfxR8FxMOEJ1cf9guk=
  • imagemagick-dev-7.1.1.13.tuxcare.els17-r0.apk
    sha:Q1mfdN63KiczQDv5hclpvMmDzjcuk=
  • imagemagick-doc-7.1.1.13.tuxcare.els17-r0.apk
    sha:Q1APlOX2NoHqTAtrnoRhYg/ijVva8=
  • imagemagick-doc-7.1.1.13.tuxcare.els17-r0.apk
    sha:Q1O+HyXJ57iI0odUseSCDpW2WTQ7U=
  • imagemagick-libs-7.1.1.13.tuxcare.els17-r0.apk
    sha:Q1Fg2haGtH8RteXgb2ECplG8sfiGg=
  • imagemagick-libs-7.1.1.13.tuxcare.els17-r0.apk
    sha:Q1Yo2GaP2q+/uCg7fO+5geGu7U5k0=
  • imagemagick-perlmagick-7.1.1.13.tuxcare.els17-r0.apk
    sha:Q1RliPmIGYQ0PV0+wGzeD/0LP5DNU=
  • imagemagick-perlmagick-7.1.1.13.tuxcare.els17-r0.apk
    sha:Q1sZTnkfErqXZHh1ECCy/n8mvLHY0=
  • imagemagick-perlmagick-doc-7.1.1.13.tuxcare.els17-r0.apk
    sha:Q1H9H5fHSTHH0Mbc1ptojOXmN/pAw=
  • imagemagick-perlmagick-doc-7.1.1.13.tuxcare.els17-r0.apk
    sha:Q1MWfpmvsgxqsxg0IYxPEUeIlkPTw=
  • imagemagick-static-7.1.1.13.tuxcare.els17-r0.apk
    sha:Q156gJMtBky3MCzTMDhpzipDXchfs=
  • imagemagick-static-7.1.1.13.tuxcare.els17-r0.apk
    sha:Q1/VnzH092r92v+S5ZiPJXgk4FkVM=
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.