[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2026-53462/trixie

Bastien Roucariès (@rouca) rouca at debian.org
Sun Jun 14 10:24:04 BST 2026 


Bastien Roucariès pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9336271e by Bastien Roucariès at 2026-06-14T11:09:07+02:00
CVE-2026-53462/trixie

- - - - -
02d426dc by Bastien Roucariès at 2026-06-14T11:23:38+02:00
CVE-2026-53465/trixie

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -983,6 +983,7 @@ CVE-2026-53634 (Sharp is a content management framework built for Laravel as a p
 	NOT-FOR-US: Sharp
 CVE-2026-53465 (ImageMagick is free and open-source software used for editing and mani ...)
 	- imagemagick 8:7.1.2.25+dfsg1-1
+	[trixie] - imagemagick <not-affected> (SF3 support added later)
 	[bookworm] - imagemagick <not-affected> (SF3 support added in IM7)
 	[bullseye] - imagemagick <not-affected> (SF3 support added in IM7)
 	NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-44cp-c3ww-9rv5
@@ -1000,9 +1001,12 @@ CVE-2026-53463 (ImageMagick is free and open-source software used for editing an
 	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick6/commit/3492c2ef45160d0fdfe34724fa6bce07583d3ec1 (6.9.13-50)
 CVE-2026-53462 (ImageMagick is free and open-source software used for editing and mani ...)
 	- imagemagick 8:7.1.2.25+dfsg1-1
+	[trixie] - imagemagick <not-affected> (vulnerable code introduced later)
 	NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-px7q-ggqj-hcf2
 	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/6c8afb5bc8e408061acb14757f1cdf466fbfad48 (7.1.2-25)
+	NOTE: Introduce by: https://github.com/ImageMagick/ImageMagick/commit/41c2d472d6a352955580893eb6be94131a0ac92f (7.1.2.22)
 	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick6/commit/1ce3a45eb58a3dda8b2cd77fb758a7fdbeabfea7 (6.9.13-50)
+	NOTE: introduce by optiomisation of CheckPrimitiveExtend method
 CVE-2026-53461 (ImageMagick is free and open-source software used for editing and mani ...)
 	- imagemagick 8:7.1.2.25+dfsg1-1
 	NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-g22q-f7gc-5jhr



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/2e53ca5595516d2e95b3b77d89fb85a7b07d8a12...02d426dc593fc6289bbe53eab64fd5e0be97c2da

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/2e53ca5595516d2e95b3b77d89fb85a7b07d8a12...02d426dc593fc6289bbe53eab64fd5e0be97c2da
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260614/b2be7184/attachment.htm>

More information about the debian-security-tracker-commits mailing list