[CLSA-2026:1784032647] ImageMagick: Fix of 5 CVEs
Type:
security
Severity:
Critical
Release date:
2026-07-14 22:53:02 UTC
Description:
- CVE-2026-56361: out-of-bounds access in AcquireKernelBuiltIn() when a user kernel offset equals the kernel width or height - CVE-2026-56367: heap overflow from an unchecked rows*channels multiplication in the PSD RLE size reader - CVE-2026-56368: memory leak of the quantum info buffer in the raw pixel writers (bgr, cmyk, gray, rgb, ycbcr) on output blob reopen failure - CVE-2026-56370: out-of-bounds write in ConnectedComponentsImage() via crafted connected-components:keep and :remove index ranges - CVE-2026-56378: out-of-bounds read in the PCD Huffman decoder from an unbounded output pointer
Updated packages:
  • ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
    sha:0339d3147175312a31ab4f2546ed97acda397dd777bcf429476c576eec64112a
  • ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
    sha:44f1031d4b855ea453c5974301695c998c6c9363eacaefa08d8a115e7afa15de
  • ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
    sha:bc47cb32a9aee80bf9778cefcae0932f6b64ca6007a31f80f4d5d67dfc8d334a
  • ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
    sha:5374134fec246e2eb776ffd607343bd88f04a1d7b89ad06a0b66581c81bce7f1
  • ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
    sha:4212dc69570b629a3cfcdc35a492604571815bad9185fc83d8652b44419eec34
  • ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
    sha:4f48145f9a0430a8f15abbe79253647e74267cb770fca999d3d49e7e3dfa7ea2
  • ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
    sha:20e87dd6abb38b194d8c8038554fcc0830f132cc3901cd51c7ab4e61f1ad0299
  • ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
    sha:06982dcca42588296fcb21c21dd4b5a81a0a02108d8803c384edaa8d2ba31f31
  • ImageMagick-doc-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
    sha:83e0f85dcb65f680496ce9c07202860b33fbaabefcf9462522b1ad73784ea843
  • ImageMagick-perl-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
    sha:199e7e3c4b31d8db253a22462480fb533b31ed3952dc4d0b99fd89a2acc61f4c
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.