Release date:
2026-07-15 16:05:06 UTC
Description:
- CVE-2026-56361: out-of-bounds access in AcquireKernelBuiltIn() when a user
kernel offset equals the kernel width or height
- CVE-2026-56367: heap overflow from an unchecked rows*channels multiplication
in the PSD RLE size reader
- CVE-2026-56368: memory leak of the quantum info buffer in the raw pixel
writers (bgr, cmyk, gray, rgb, ycbcr) on output blob reopen failure
- CVE-2026-56370: out-of-bounds write in ConnectedComponentsImage() via crafted
connected-components:keep and :remove index ranges
- CVE-2026-56378: out-of-bounds read in the PCD Huffman decoder from an
unbounded output pointer
Updated packages:
-
ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
sha:717ec8b5a00a72b7372ab10abf6b80ef0805ad7d5b1fd268f7766baf4d1de906
-
ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:637525dc8bcc4388a6ee85d197fec7b7481e03aa2dd338d02509a0d01709504f
-
ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
sha:61c41e46e0208e111cc77b2109adcebcb958ed21bf05e3b90b6bab48e11c95ca
-
ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:ea8cb7332505189487063f917b08f30b4392dcea6c17b70d8ef330f370c77feb
-
ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
sha:34dffff8105492386085b7c07a2812c0048fb86bc7c6fb5f4c2bf959c201847e
-
ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:3a08afa5a7f522e803c3aff9a9361e34cc4c73ea5597193c8e4e6c7fa9d527c7
-
ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
sha:0127f67ff3d7876b3f96bd305dc7b44f0ada7683da9b691a5376c525e166f0c2
-
ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:0f3eefe63143359e60c7538d622d9a099122df1cfbf19c8d60808c89d75be0d1
-
ImageMagick-doc-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:a23f891ddfc5bbed6844d460ec8d915e19a0f5f036df13f55456d06c3861a0c3
-
ImageMagick-perl-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:3dfac9a636026644ed5ec17c24d6907528ce3d6b8497c42a88c84b9d12ef0bc7
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.