Release date:
2026-07-15 15:54:47 UTC
Description:
- CVE-2026-56361: out-of-bounds access in AcquireKernelBuiltIn() when a user
kernel offset equals the kernel width or height
- CVE-2026-56367: heap overflow from an unchecked rows*channels multiplication
in the PSD RLE size reader
- CVE-2026-56368: memory leak of the quantum info buffer in the raw pixel
writers (bgr, cmyk, gray, rgb, ycbcr) on output blob reopen failure
- CVE-2026-56370: out-of-bounds write in ConnectedComponentsImage() via crafted
connected-components:keep and :remove index ranges
- CVE-2026-56378: out-of-bounds read in the PCD Huffman decoder from an
unbounded output pointer
Updated packages:
-
ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
sha:2f124a035953e04f1b60e2146c826dab1c84ded53271cb9e3e4fae9eac1dfd5b
-
ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:721c97ecf61ba0d947986534e7d042ef6773194c3b1495c871213dcda416e53b
-
ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
sha:7bc7a48f46d97d6122df2b79a5de660ace397887efef4cb02fe55d84c6639d25
-
ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:679dfd775ba0edbb901c1ba3e31ae7088bdb5022e1b6d84993c6b5f771b74840
-
ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
sha:653f00a97e33e2224a6df3a56b38b87c27d8a6a7e049db5f1f62cf08f50b43de
-
ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:5cb024b32b1559adcb7721043a9c8b0076263959f28a4f5ff5b44cead40c4c12
-
ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
sha:19764b5a03d48ad61508f4a5c8d7a342cee5f315f20344d638a75f8e56f8f7ec
-
ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:9e6d49633742aa45686cb0e78659506c1cf6ba046d1ee1ea523f67e1b4107de2
-
ImageMagick-doc-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:78f2f5f885df7bec0ba4c77d264269d61b514535efe4679dae06ee2926aa6df3
-
ImageMagick-perl-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:6ea97b381bf6373e454c9cf9aee2a4c1c69ea9e331f54afd752efaed0b6aed58
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.