[Git][security-tracker-team/security-tracker][master] Update status for CVE-2025-68469/imagemagick

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sat Dec 20 12:39:12 GMT 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c6eea8fb by Salvatore Bonaccorso at 2025-12-20T13:38:30+01:00
Update status for CVE-2025-68469/imagemagick

Thanks: Bastien Roucaries

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -417,9 +417,12 @@ CVE-2025-7358 (Use of Hard-coded Credentials vulnerability in Utarit Informatics
 CVE-2025-7047 (Missing Authorization vulnerability in Utarit Informatics Services Inc ...)
 	NOT-FOR-US: SoliClub
 CVE-2025-68469 (ImageMagick is free and open-source software used for editing and mani ...)
-	- imagemagick <undetermined>
+	- imagemagick 8:6.9.12.98+dfsg1-2
 	NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-fff3-4rp7-px97
-	TODO: check, sid to be fixed in 7.1.1-14 (but not iff related changes in 7.1.1-13..7.1.1-14?)
+	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/a531d28e31309676ce8168c3b6dbbb5374b78790 (7.1.1-13)
+	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/ac1f7ca1d88e14d30e5ae9bd30aad150bdbec20e (7.1.1-13)
+	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick6/commit/0d00400727170b0540a355a1bc52787bc7bcdea5 (6.9.12-91)
+	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick6/commit/5c0306243f6b5d42951b1312eed4ec4edda9670d (6.9.12-91)
 CVE-2025-68278 (Tina is a headless content management system. In tinacms prior to vers ...)
 	NOT-FOR-US: Tina CMS
 CVE-2025-67745 (MyHoard is a daemon for creating, managing and restoring MySQL backups ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c6eea8fbaf58cbd9a8e7af61710d08a91521e53f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c6eea8fbaf58cbd9a8e7af61710d08a91521e53f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251220/f26086a4/attachment.htm>

More information about the debian-security-tracker-commits mailing list