[CLSA-2026:1784131324] ImageMagick: Fix of CVE-2025-43965
Type:
security
Severity:
Important
Release date:
2026-07-15 16:02:16 UTC
Description:
- CVE-2025-43965: fix incorrect buffer size calculation (CWE-131) in the MIFF decoder caused by image depth not being resynchronized after SetQuantumFormat
CVEs fixed:
Updated packages:
  • ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els21.i686.rpm
    sha:7c8377534cba13636805c322c51a5c12621c52ff3c1e45395372eca169bf76e2
  • ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:aa6a27e0dfba0bec03c6ddc64f3dcd5e640deed095766a150124d29dc80ecbc2
  • ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els21.i686.rpm
    sha:433903f5902e6cf91bd81fffa1693bb97efe107830af66314ff2abaf6d93ac1d
  • ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:a36e2f6898b270b461617d37ba2d8460e1f84c0442937ff1a7448a0bb090b822
  • ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els21.i686.rpm
    sha:02abd27ce3f36214cac4c97c9b65fcb62a82760bd39870177e3f5018d34b386e
  • ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:224edbbf45332de76f478d00e13a7a75a7ef4f3a1ba50c6e1d923131d01f9b7b
  • ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els21.i686.rpm
    sha:08c7cbb126c1e8490da10e57e8e4c18a357b54a3bd4e4dfdafdf9425e63e9239
  • ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:0fac64616afcc1a5ed66e6506ff29cb9b412c7d7d3abb6dc452baee77d8f93bf
  • ImageMagick-doc-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:5d75b432113604238c37ba887bf92df8038fabb774578ab5778bfd6ca55d86a1
  • ImageMagick-perl-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:1a9c5ddf32ed1f3cf00d86d171b0a1052adbc910d995668a1f8523aab68c137e
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.