Release date:
2026-07-14 12:50:59 UTC
Description:
- CVE-2026-56361: out-of-bounds access in AcquireKernelBuiltIn() when a user
kernel offset equals the kernel width or height
- CVE-2026-56367: heap overflow from an unchecked rows*channels multiplication
in the PSD RLE size reader
- CVE-2026-56368: memory leak of the quantum info buffer in the raw pixel
writers (bgr, cmyk, gray, rgb, ycbcr) on output blob reopen failure
- CVE-2026-56370: out-of-bounds write in ConnectedComponentsImage() via crafted
connected-components:keep and :remove index ranges
- CVE-2026-56378: out-of-bounds read in the PCD Huffman decoder from an
unbounded output pointer
Updated packages:
-
ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
sha:3b09b33c6875fbcf5d80390b5c86a2abf674c5fbf8486c71c77089202fd78033
-
ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:41ad703e0760cc9261b4126e179f6076af94ae7e03bec3ab12b3077d6d96bd89
-
ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
sha:e0c9a40db8282f4a3fb1009ec176c2a45083913fb687b64cfc98d06be554613c
-
ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:9b7ae681c460a50041c5a334077e4a8e29b936e621743650d67b3bc1bb741599
-
ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
sha:b3033d944b3f7b7f72ea6686babadbe7ad79bdecfe5815a9907c79ba861c3007
-
ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:f644fb1af2c7ffa0bc0f208e3b7640a9bd5acb357d8e0c3c125ff0c7886b42e3
-
ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.i686.rpm
sha:2a787ffa33a352c6a6ec92dab24a818e9955321acdf157862aa7a2532fbb7a27
-
ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:f48448ffc0d3ef31cadc49a9ed2c1fb4e65cb9f5dc1a641d68ee50565fa3af91
-
ImageMagick-doc-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:b57d2bf8453df8ac4c7c1c6b49c9e9860ab8343a5ef64f213a489a83f7c6e93c
-
ImageMagick-perl-6.9.10.68-7.0.3.el7_9.tuxcare.els20.x86_64.rpm
sha:ed53fed00feb7dbae398dc0550ab14c15848630e3a5cfb05b28acf362e151c6d
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.