[CLSA-2026:1775749004] ImageMagick: Fix of 4 CVEs
Type:
security
Severity:
Critical
Release date:
2026-04-09 15:36:48 UTC
Description:
- CVE-2026-25968: stack buffer overflow in MSL image-processing language via WriteMSLImage recursion - CVE-2026-25897: out-of-bounds heap write in SUN decoder on 32-bit systems via integer overflow in pixel buffer allocation - CVE-2025-53014: out-of-bounds read in InterpretImageFilename when processing escaped percent characters - CVE-2025-53101: out-of-bounds read in InterpretImageFilename via missing bounds check on format specifier parsing
Updated packages:
  • ImageMagick-6.9.13.25-1.el8_4.tuxcare.els8.x86_64.rpm
    sha:cf8e9b16b4b4b5d5f8c863ce8ec9f3aef7e6c7dc89dd0a5e365a1e4efa2dd1c8
  • ImageMagick-c++-6.9.13.25-1.el8_4.tuxcare.els8.x86_64.rpm
    sha:ac543fe2bdbc8e2ea32c14706cfb2c78599eeae8b1f3287c0d91088902375471
  • ImageMagick-c++-devel-6.9.13.25-1.el8_4.tuxcare.els8.x86_64.rpm
    sha:879a5c0bfb2135e612a67905fb45acc8ff4fd953ec6b722a10c4161525ae425e
  • ImageMagick-devel-6.9.13.25-1.el8_4.tuxcare.els8.x86_64.rpm
    sha:5b3aa24707bf52c1178243eec0bc6bc1e392a2f8e84f882a7d6b7b09462c5c8f
  • ImageMagick-djvu-6.9.13.25-1.el8_4.tuxcare.els8.x86_64.rpm
    sha:805cbe5c5eeeef230e0f818feef0845325fd638a78b5fbe8c2b2dbd294f06c79
  • ImageMagick-doc-6.9.13.25-1.el8_4.tuxcare.els8.x86_64.rpm
    sha:9df443c74fd0bd861af24f6651321db560dd9c33c1ee45769ce2dd99945ce387
  • ImageMagick-libs-6.9.13.25-1.el8_4.tuxcare.els8.x86_64.rpm
    sha:124e839606e6b25cfcd13f31bda55bd1481bcc393ae823ed8fdd207867a945d2
  • ImageMagick-perl-6.9.13.25-1.el8_4.tuxcare.els8.x86_64.rpm
    sha:ea544cb42898273c26a14c2e61c335698f908bca77e9d3f1adae1799322b42fe
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.