[CLSA-2026:1784126697] ImageMagick: Fix of CVE-2025-43965
Type:
security
Severity:
Important
Release date:
2026-07-15 14:45:11 UTC
Description:
- CVE-2025-43965: fix incorrect buffer size calculation (CWE-131) in the MIFF decoder caused by image depth not being resynchronized after SetQuantumFormat
CVEs fixed:
Updated packages:
  • ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els21.i686.rpm
    sha:77ccc2448cba5e2068cb995863febcf789e87e035203e42e6ed67721abfbabb2
  • ImageMagick-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:46501b38d8a75194c8d2036bb9526bce5ca3e667f1d8df08e7fd68e3369bdb45
  • ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els21.i686.rpm
    sha:2ee951e7e59688503205c9d8266a8a85fdcda16b2650e9e808840f2d94799c64
  • ImageMagick-c++-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:1ebe2efbd5e13223eb2f34477d74f19671757685f189016c3851ab51b345d3a8
  • ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els21.i686.rpm
    sha:b2b9ea1911e83d7d5079c02c0cf4a34d377d9bf7bd037da9f9f3a3e8008e1bbd
  • ImageMagick-c++-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:b9d496bcf51be5def85b566c800fd43a34f760e8018f1c5d76911a5497302424
  • ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els21.i686.rpm
    sha:87e5efb564ceb806a0946e88e5ce2960f50ed3000a57e96d789d600502d7854c
  • ImageMagick-devel-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:d9c6178aa2f3bb91fd5e75bf37309b972797075b8be257b498214ca77a486cb1
  • ImageMagick-doc-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:c314b86829d77dcd37f8bdebb33852258a3465cfaace9190bb74cf9ef3716993
  • ImageMagick-perl-6.9.10.68-7.0.3.el7_9.tuxcare.els21.x86_64.rpm
    sha:12d7197905d6d81f4b1ee5ea18880b1590da6a0f7409da67fe6c443e0187505e
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.