Release date:
2026-03-12 09:46:08 UTC
Description:
* SECURITY UPDATE: denial-of-service via division-by-zero in image loading
- debian/patches/CVE-2026-25799.patch: Fix sampling-factor validation by
replacing incorrect AND with OR in horizontal/vertical axis checks and
prevent acceptance of invalid sampling caused by flawed boolean logic.
- CVE-2026-25799
* SECURITY UPDATE: Null pointer dereference in ClonePixelCacheRepository
resulting in denial-of-service
- debian/patches/CVE-2026-25798.patch: Add overflow sanity check in
OpenPixelCache and reset cache storage class and length before throwing
on allocation failure
- CVE-2026-25798
* SECURITY UPDATE: memory leak in ReadSTEGANOImage that can be exploited for
denial-of-service
- debian/patches/CVE-2026-25796.patch: free watermark object on three
early-return paths
- CVE-2026-25796
* SECURITY UPDATE: a crafted profile contain invalid IPTC data may cause an
infinite loop when writing it with `IPTCTEXT`
- debian/patches/CVE-2026-26066.patch: replace `c=0` with
`c=ReadBlobByte(ifile)` in formatIPTC so the loop advances past an
unrecognised tag instead of spinning forever
- CVE-2026-26066
Updated packages:
-
imagemagick_6.8.9.9-7ubuntu5.17+tuxcare.els33_amd64.deb
sha:84e83f733fbfeeef4151047a14e89a7abc582d7a
-
imagemagick-6.q16_6.8.9.9-7ubuntu5.17+tuxcare.els33_amd64.deb
sha:e86db102ea9a3490c8dc12c6fab42b92f6e030a0
-
imagemagick-common_6.8.9.9-7ubuntu5.17+tuxcare.els33_all.deb
sha:05dc260c35b791df3cbb645943fc1484b03c39e5
-
imagemagick-doc_6.8.9.9-7ubuntu5.17+tuxcare.els33_all.deb
sha:e6c026b0fe31d4281f47ee7e90746c323d417f5e
-
libimage-magick-perl_6.8.9.9-7ubuntu5.17+tuxcare.els33_all.deb
sha:ee51fb0851f05f27f2a0fc9d246b29340a6b9ea5
-
libimage-magick-q16-perl_6.8.9.9-7ubuntu5.17+tuxcare.els33_amd64.deb
sha:3fd80679993326b50512151950eea573d0dbfd63
-
libmagick++-6-headers_6.8.9.9-7ubuntu5.17+tuxcare.els33_all.deb
sha:5a0b99d05e690ab2eada692876174764f1320f4d
-
libmagick++-6.q16-5v5_6.8.9.9-7ubuntu5.17+tuxcare.els33_amd64.deb
sha:484c0448b4da6f31600369e46d1cc9a3b5acd5e5
-
libmagick++-6.q16-dev_6.8.9.9-7ubuntu5.17+tuxcare.els33_amd64.deb
sha:6e0b3037e859eb8f074b98487532e92cc612e880
-
libmagick++-dev_6.8.9.9-7ubuntu5.17+tuxcare.els33_all.deb
sha:14d19c8c916419a66943096fa72bb0a01495a9dc
-
libmagickcore-6-arch-config_6.8.9.9-7ubuntu5.17+tuxcare.els33_amd64.deb
sha:3088badeaba7f79c431d2210fb9642c015e19681
-
libmagickcore-6-headers_6.8.9.9-7ubuntu5.17+tuxcare.els33_all.deb
sha:ee32e184d0176a6d5776a3f42324185822f570a9
-
libmagickcore-6.q16-2_6.8.9.9-7ubuntu5.17+tuxcare.els33_amd64.deb
sha:d0de6d40df01c80d0a93f64964f42be2a1bfe875
-
libmagickcore-6.q16-2-extra_6.8.9.9-7ubuntu5.17+tuxcare.els33_amd64.deb
sha:167e2063dd5c522f2ca53d4fec370c3b0b983bf0
-
libmagickcore-6.q16-dev_6.8.9.9-7ubuntu5.17+tuxcare.els33_amd64.deb
sha:99d6bc7acc3d54583554d5bb600198d4208f4b09
-
libmagickcore-dev_6.8.9.9-7ubuntu5.17+tuxcare.els33_all.deb
sha:214f32054378a5f536fe9ed2347bb14afd001dfd
-
libmagickwand-6-headers_6.8.9.9-7ubuntu5.17+tuxcare.els33_all.deb
sha:0abc09499153e16763e7b730e364c796850f3c1b
-
libmagickwand-6.q16-2_6.8.9.9-7ubuntu5.17+tuxcare.els33_amd64.deb
sha:36d6e7370d7cb5a2ce2874b47a37b364ed7957a9
-
libmagickwand-6.q16-dev_6.8.9.9-7ubuntu5.17+tuxcare.els33_amd64.deb
sha:b088394184db8dbe1f06f864df92844a88b49ba7
-
libmagickwand-dev_6.8.9.9-7ubuntu5.17+tuxcare.els33_all.deb
sha:ca9894cb20966639f876a59772f3671f655fd68c
-
perlmagick_6.8.9.9-7ubuntu5.17+tuxcare.els33_all.deb
sha:1d5408b4a788a08da871632536c5f45350a8acb9
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
