[CLSA-2026:1784126490] ImageMagick: Fix of CVE-2025-43965
Type:
security
Severity:
Important
Release date:
2026-07-15 14:41:46 UTC
Description:
- CVE-2025-43965: fix incorrect buffer size calculation (CWE-131) in the MIFF decoder caused by image depth not being resynchronized after SetQuantumFormat
CVEs fixed:
Updated packages:
  • ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els21.i686.rpm
    sha:2472693b31b61baab1849d7990f15e53ec3462de3f7da04db3ace3bb5a2b01c4
  • ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:58ddcef1ea23c418bdad05f4ba4a632c495cf13dd8c7ea48eac86885a9194bfe
  • ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els21.i686.rpm
    sha:bdff1f7a3a0168620e931d04cd344e2c187c81b5f74794414c0395035b762e9a
  • ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:f82e3b4d5d374e453dcde4fd9902ab07f36a03ebfb26e7cf37edf354a1bb3499
  • ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els21.i686.rpm
    sha:4a6fead2448a9a9e7edfd7906304aedd2f5658b4169d53196edb03a82dffb721
  • ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:40cda4ad13385f4476b723d493116f9765caf851daae84522218e98ada6a2649
  • ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els21.i686.rpm
    sha:bb4e8d5f409e2f6df8da638901f6cdd1441d2b893f8b486405d588a56d0b0237
  • ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:3576499765f50bbff05aa9df52daccdd7bc5da4218028cff852d1fa24c91e319
  • ImageMagick-doc-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:8a77c851720e0ef2e3a0431246093932d519672a841a55d165bd74aac8a6ef27
  • ImageMagick-perl-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:94e076ebf04c2b39c7d46b8d35a019def8c1fda93e9e3fab1de30d41a5fa091e
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.