[CLSA-2026:1772451135] Fix CVE(s): CVE-2026-25897, CVE-2026-26284
Type:
security
Severity:
Critical
Release date:
2026-03-02 11:32:19 UTC
Description:
* SECURITY UPDATE: out-of-bounds read vulnerability - debian/patches/CVE-2026-26284.patch: Fix incorrect loop initialization in delta decoding; prevent out-of-bounds read caused by starting table scan at invalid index. - CVE-2026-26284 * SECURITY UPDATE: out-of-bounds heap write on 32-bit systems - debian/patches/CVE-2026-25897.patch: Add size-calculating heap overflow sanity check and validate row padding addition to prevent out-of-bounds heap write on 32-bit systems caused by integer overflow in pixel buffer length computation. - CVE-2026-25897
Updated packages:
  • imagemagick_6.8.9.9-7ubuntu5.17+tuxcare.els32_amd64.deb
    sha:d4b6694c8089bc2008f77d136b89d24884bb0237
  • imagemagick-6.q16_6.8.9.9-7ubuntu5.17+tuxcare.els32_amd64.deb
    sha:1c8a71935690e99d025543c61608c2f1420fecf2
  • imagemagick-common_6.8.9.9-7ubuntu5.17+tuxcare.els32_all.deb
    sha:2a8720925de7674522aff904ab217cb880565126
  • imagemagick-doc_6.8.9.9-7ubuntu5.17+tuxcare.els32_all.deb
    sha:a13ae14b94af35b8dda62c225608ef5f11b0e660
  • libimage-magick-perl_6.8.9.9-7ubuntu5.17+tuxcare.els32_all.deb
    sha:0708b75ecc6ecf01920abf401f6531f6d8755b27
  • libimage-magick-q16-perl_6.8.9.9-7ubuntu5.17+tuxcare.els32_amd64.deb
    sha:5abe1eca4fbae10c278cf11cb812cfc26272589a
  • libmagick++-6-headers_6.8.9.9-7ubuntu5.17+tuxcare.els32_all.deb
    sha:f7de02ddfe310bb5b74e59e7343c52a3c6515094
  • libmagick++-6.q16-5v5_6.8.9.9-7ubuntu5.17+tuxcare.els32_amd64.deb
    sha:4cfa2faa0d680fa3c90e88cc5c7c14c48de9b7e3
  • libmagick++-6.q16-dev_6.8.9.9-7ubuntu5.17+tuxcare.els32_amd64.deb
    sha:85fb47b5bd5e20d41786d28e95720b06baa786bb
  • libmagick++-dev_6.8.9.9-7ubuntu5.17+tuxcare.els32_all.deb
    sha:7081d7d7b5b25f529de56c8bc1f23b0911ec0534
  • libmagickcore-6-arch-config_6.8.9.9-7ubuntu5.17+tuxcare.els32_amd64.deb
    sha:78cad341e5e97988b27c4b085945d7a7934ee57a
  • libmagickcore-6-headers_6.8.9.9-7ubuntu5.17+tuxcare.els32_all.deb
    sha:057028a7f6239cbfa840390ade8bd95711d7afe9
  • libmagickcore-6.q16-2_6.8.9.9-7ubuntu5.17+tuxcare.els32_amd64.deb
    sha:a74405e2df8fb24befab64730191009dbac87a9f
  • libmagickcore-6.q16-2-extra_6.8.9.9-7ubuntu5.17+tuxcare.els32_amd64.deb
    sha:838c10a7e28580674cb25c3c712c3e2f6b1e9c27
  • libmagickcore-6.q16-dev_6.8.9.9-7ubuntu5.17+tuxcare.els32_amd64.deb
    sha:722838433833df60f048c3aac084173a89579b7c
  • libmagickcore-dev_6.8.9.9-7ubuntu5.17+tuxcare.els32_all.deb
    sha:b7890af276a5ddcaed580dfb4c5cbe76d4163406
  • libmagickwand-6-headers_6.8.9.9-7ubuntu5.17+tuxcare.els32_all.deb
    sha:bcf4fbc0456aeea735b0dcdaabbcd010a2369e3c
  • libmagickwand-6.q16-2_6.8.9.9-7ubuntu5.17+tuxcare.els32_amd64.deb
    sha:c83d862974d04b5a92e7d490c631099b4f5b7e43
  • libmagickwand-6.q16-dev_6.8.9.9-7ubuntu5.17+tuxcare.els32_amd64.deb
    sha:119f484abc7bd0f8e524c7979981a7e4f37d662f
  • libmagickwand-dev_6.8.9.9-7ubuntu5.17+tuxcare.els32_all.deb
    sha:d90ece8af54de1b9041b6418d0daf12897ff3842
  • perlmagick_6.8.9.9-7ubuntu5.17+tuxcare.els32_all.deb
    sha:f1f3c369910dd4b60df4d87e6ba010b5f5322d7d
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.