Release date:
2026-07-14 22:53:02 UTC
Description:
- CVE-2026-56361: out-of-bounds access in AcquireKernelBuiltIn() when a user
kernel offset equals the kernel width or height
- CVE-2026-56367: heap overflow from an unchecked rows*channels multiplication
in the PSD RLE size reader
- CVE-2026-56368: memory leak of the quantum info buffer in the raw pixel
writers (bgr, cmyk, gray, rgb, ycbcr) on output blob reopen failure
- CVE-2026-56370: out-of-bounds write in ConnectedComponentsImage() via crafted
connected-components:keep and :remove index ranges
- CVE-2026-56378: out-of-bounds read in the PCD Huffman decoder from an
unbounded output pointer
Updated packages:
-
ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
sha:0339d3147175312a31ab4f2546ed97acda397dd777bcf429476c576eec64112a
-
ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:44f1031d4b855ea453c5974301695c998c6c9363eacaefa08d8a115e7afa15de
-
ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
sha:bc47cb32a9aee80bf9778cefcae0932f6b64ca6007a31f80f4d5d67dfc8d334a
-
ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:5374134fec246e2eb776ffd607343bd88f04a1d7b89ad06a0b66581c81bce7f1
-
ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
sha:4212dc69570b629a3cfcdc35a492604571815bad9185fc83d8652b44419eec34
-
ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:4f48145f9a0430a8f15abbe79253647e74267cb770fca999d3d49e7e3dfa7ea2
-
ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
sha:20e87dd6abb38b194d8c8038554fcc0830f132cc3901cd51c7ab4e61f1ad0299
-
ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:06982dcca42588296fcb21c21dd4b5a81a0a02108d8803c384edaa8d2ba31f31
-
ImageMagick-doc-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:83e0f85dcb65f680496ce9c07202860b33fbaabefcf9462522b1ad73784ea843
-
ImageMagick-perl-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:199e7e3c4b31d8db253a22462480fb533b31ed3952dc4d0b99fd89a2acc61f4c
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.