[CLSA-2026:1784126711] ImageMagick: Fix of CVE-2025-43965
Type:
security
Severity:
Important
Release date:
2026-07-15 15:55:41 UTC
Description:
- CVE-2025-43965: fix incorrect buffer size calculation (CWE-131) in the MIFF decoder caused by image depth not being resynchronized after SetQuantumFormat
CVEs fixed:
Updated packages:
  • ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els21.i686.rpm
    sha:fd6b47d7afde6d48d8d8287da54dea4b493f21a935c238f3365698d3137da90d
  • ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:afe8421f073d75308a22a2dfa3599701066de86c639655c23f5e2eeafdbc65fe
  • ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els21.i686.rpm
    sha:e96807530ce13ef0b2e976357e517bf9a5f22f8942cb5abbe1d4e3374db4085f
  • ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:24c06cc8f67d9325c1b13b00ece0a9fe1a5f22fe95628dd8fde72e3a4cd0caab
  • ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els21.i686.rpm
    sha:f3349ede9ed97f681c57d9db871584425ec228652d47db8251d1aef5431100ec
  • ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:911ff07ceabc43c89d084c781a6c9ee6c56c7dd6dcde91cbe14f504bb2a51002
  • ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els21.i686.rpm
    sha:9c9d4c885f1b0ddc60cb7583da3c9ac05a301d35f04fcd36079aa28df0f2c3a9
  • ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:368f25d5baa10c7a63372e759952fd3b556e40987fcc0bfe6d5b592f2d91f658
  • ImageMagick-doc-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:72cd03a66fdf4e9485946b9f3c48d755e816e411f6dd6753630a51545167f803
  • ImageMagick-perl-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:67ddf96b7e9580d598f1a418475bef45b68585e20bcbdacf7421c503ec2068c3
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.