[CLSA-2026:1784033183] ImageMagick: Fix of 5 CVEs
Type:
security
Severity:
Critical
Release date:
2026-07-15 15:54:47 UTC
Description:
- CVE-2026-56361: out-of-bounds access in AcquireKernelBuiltIn() when a user kernel offset equals the kernel width or height - CVE-2026-56367: heap overflow from an unchecked rows*channels multiplication in the PSD RLE size reader - CVE-2026-56368: memory leak of the quantum info buffer in the raw pixel writers (bgr, cmyk, gray, rgb, ycbcr) on output blob reopen failure - CVE-2026-56370: out-of-bounds write in ConnectedComponentsImage() via crafted connected-components:keep and :remove index ranges - CVE-2026-56378: out-of-bounds read in the PCD Huffman decoder from an unbounded output pointer
Updated packages:
  • ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
    sha:2f124a035953e04f1b60e2146c826dab1c84ded53271cb9e3e4fae9eac1dfd5b
  • ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
    sha:721c97ecf61ba0d947986534e7d042ef6773194c3b1495c871213dcda416e53b
  • ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
    sha:7bc7a48f46d97d6122df2b79a5de660ace397887efef4cb02fe55d84c6639d25
  • ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
    sha:679dfd775ba0edbb901c1ba3e31ae7088bdb5022e1b6d84993c6b5f771b74840
  • ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
    sha:653f00a97e33e2224a6df3a56b38b87c27d8a6a7e049db5f1f62cf08f50b43de
  • ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
    sha:5cb024b32b1559adcb7721043a9c8b0076263959f28a4f5ff5b44cead40c4c12
  • ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
    sha:19764b5a03d48ad61508f4a5c8d7a342cee5f315f20344d638a75f8e56f8f7ec
  • ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
    sha:9e6d49633742aa45686cb0e78659506c1cf6ba046d1ee1ea523f67e1b4107de2
  • ImageMagick-doc-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
    sha:78f2f5f885df7bec0ba4c77d264269d61b514535efe4679dae06ee2926aa6df3
  • ImageMagick-perl-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
    sha:6ea97b381bf6373e454c9cf9aee2a4c1c69ea9e331f54afd752efaed0b6aed58
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.