Release date:
2026-06-05 15:14:22 UTC
Description:
- CVE-2026-30883: fix heap buffer overflow in the PNG encoder when
writing extremely large raw profiles
- CVE-2026-28692: fix 32-bit integer arithmetic in the MAT decoder
row-size computation causing a heap over-read
- CVE-2026-31853: fix broken 32-bit overflow check in the SFW decoder
buffer allocation
- CVE-2026-28689: enforce path policy rights at file-open time and
honor a new system 'follow' policy to prevent symlink TOCTOU policy
bypass
Updated packages:
-
ImageMagick-6.9.13.25-1.el9_2.tuxcare.els7.x86_64.rpm
sha:eee55b41a9072789f7c47ee36123ebec4731de65e5308532a545446e5feb3bc9
-
ImageMagick-c++-6.9.13.25-1.el9_2.tuxcare.els7.x86_64.rpm
sha:819be56d3bc22257274fadf93d3cee46c989d992117da4c2135961323049fc6d
-
ImageMagick-c++-devel-6.9.13.25-1.el9_2.tuxcare.els7.x86_64.rpm
sha:b5c42f6d0647067e1be3350f9a7516b84b4b087591af1f8c1914eb7da662ba0c
-
ImageMagick-devel-6.9.13.25-1.el9_2.tuxcare.els7.x86_64.rpm
sha:13c6ccb298305b6cd53a99a334dbe45dd4b576ed013acd8f378a8e482484f1d2
-
ImageMagick-djvu-6.9.13.25-1.el9_2.tuxcare.els7.x86_64.rpm
sha:ce5d90caa6cd9d3bb67981b205edf013d92ce2755a95f52f8520a35166c782a7
-
ImageMagick-doc-6.9.13.25-1.el9_2.tuxcare.els7.x86_64.rpm
sha:3cb976ca2db0106bd4d3cd33889192c9ad5a7e50bb8c43662a1b4c0210d70e00
-
ImageMagick-libs-6.9.13.25-1.el9_2.tuxcare.els7.x86_64.rpm
sha:44d42f8266fe220a0678db7b24c987ab3344444d52f850f399834aca0827e7a3
-
ImageMagick-perl-6.9.13.25-1.el9_2.tuxcare.els7.x86_64.rpm
sha:f1ae6fc6153a15dff027bace6b0e0377ae1ea8b031e5ad7a40336e4b7b802424
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
