[CLSA-2026:1784037535] ImageMagick: Fix of 5 CVEs
Type:
security
Severity:
Critical
Release date:
2026-07-15 16:05:06 UTC
Description:
- CVE-2026-56361: out-of-bounds access in AcquireKernelBuiltIn() when a user kernel offset equals the kernel width or height - CVE-2026-56367: heap overflow from an unchecked rows*channels multiplication in the PSD RLE size reader - CVE-2026-56368: memory leak of the quantum info buffer in the raw pixel writers (bgr, cmyk, gray, rgb, ycbcr) on output blob reopen failure - CVE-2026-56370: out-of-bounds write in ConnectedComponentsImage() via crafted connected-components:keep and :remove index ranges - CVE-2026-56378: out-of-bounds read in the PCD Huffman decoder from an unbounded output pointer
Updated packages:
  • ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
    sha:717ec8b5a00a72b7372ab10abf6b80ef0805ad7d5b1fd268f7766baf4d1de906
  • ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
    sha:637525dc8bcc4388a6ee85d197fec7b7481e03aa2dd338d02509a0d01709504f
  • ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
    sha:61c41e46e0208e111cc77b2109adcebcb958ed21bf05e3b90b6bab48e11c95ca
  • ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
    sha:ea8cb7332505189487063f917b08f30b4392dcea6c17b70d8ef330f370c77feb
  • ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
    sha:34dffff8105492386085b7c07a2812c0048fb86bc7c6fb5f4c2bf959c201847e
  • ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
    sha:3a08afa5a7f522e803c3aff9a9361e34cc4c73ea5597193c8e4e6c7fa9d527c7
  • ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
    sha:0127f67ff3d7876b3f96bd305dc7b44f0ada7683da9b691a5376c525e166f0c2
  • ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
    sha:0f3eefe63143359e60c7538d622d9a099122df1cfbf19c8d60808c89d75be0d1
  • ImageMagick-doc-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
    sha:a23f891ddfc5bbed6844d460ec8d915e19a0f5f036df13f55456d06c3861a0c3
  • ImageMagick-perl-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
    sha:3dfac9a636026644ed5ec17c24d6907528ce3d6b8497c42a88c84b9d12ef0bc7
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.