Release date:
2026-06-05 15:28:48 UTC
Description:
- CVE-2026-30883: fix heap buffer overflow in the PNG encoder when
writing extremely large raw profiles
- CVE-2026-28692: fix 32-bit integer arithmetic in the MAT decoder
row-size computation causing a heap over-read
- CVE-2026-31853: fix broken 32-bit overflow check in the SFW decoder
buffer allocation
- CVE-2026-28689: enforce path policy rights at file-open time and
honor a new system 'follow' policy to prevent symlink TOCTOU policy
bypass
Updated packages:
-
ImageMagick-6.9.13.25-1.el9_6.tuxcare.els7.x86_64.rpm
sha:43327bdb1c6d45daaf8b1b35d5a2eb8e5a9735e5b2760171c6c810d03c91b681
-
ImageMagick-c++-6.9.13.25-1.el9_6.tuxcare.els7.x86_64.rpm
sha:508b1b4145d2d738425636422c11acfe14774eb8030a8e348b6757e0a835d8c6
-
ImageMagick-c++-devel-6.9.13.25-1.el9_6.tuxcare.els7.x86_64.rpm
sha:29c70422ae6c172fcec810dd77423d2ef499e6e6b6a38d13ab0374d8803a9b4d
-
ImageMagick-devel-6.9.13.25-1.el9_6.tuxcare.els7.x86_64.rpm
sha:26bd9c86d3faa37a4d5a7836515a13d22e4411d119031186950173537252ea94
-
ImageMagick-djvu-6.9.13.25-1.el9_6.tuxcare.els7.x86_64.rpm
sha:c4d89a0ffad982cee2b4cb80b44859f181f37ac95e3fa557de56bb968306e88f
-
ImageMagick-doc-6.9.13.25-1.el9_6.tuxcare.els7.x86_64.rpm
sha:6a1a1a7729afbda877df74780627061f4b7ec2cf58b0308b2ae4b962b96f7322
-
ImageMagick-libs-6.9.13.25-1.el9_6.tuxcare.els7.x86_64.rpm
sha:2bad396a715b0acf7098366fb0f50fa2f90112df079f5c681ea9d23cb3b771d2
-
ImageMagick-perl-6.9.13.25-1.el9_6.tuxcare.els7.x86_64.rpm
sha:1de47045b71cc008abac6a02174106661c74f31ddc339146bb6ab51441150e24
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
