[Git][security-tracker-team/security-tracker][master] Add two new imagemagick issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Jun 24 21:19:15 BST 2026



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e9bdc3a3 by Salvatore Bonaccorso at 2026-06-24T22:19:02+02:00
Add two new imagemagick issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -59,13 +59,17 @@ CVE-2026-57280 (Jenkins Script Security Plugin 1402.v94c9ce464861 and earlier do
 CVE-2026-56761 (hono before 4.12.14 contains an html injection vulnerability in jsx se ...)
 	NOT-FOR-US: Hono
 CVE-2026-56370 (ImageMagick before 7.1.2-19 contains an out-of-bounds access vulnerabi ...)
-	- imagemagick <unfixed>
+	- imagemagick 8:7.1.2.19+dfsg1-1
 	[trixie] - imagemagick <no-dsa> (Minor issue)
 	NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-pmpg-6pww-fg6q
+	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/2ab24d74865ab92faeeefe0fec890abf1e88e57c (7.1.2-19)
+	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick6/commit/60b4e60841b429d719c59144e2505c8b0135367d (6.9.13-44)
 CVE-2026-56368 (ImageMagick before 7.1.2-15 contains a memory leak vulnerability in mu ...)
-	- imagemagick <unfixed>
+	- imagemagick 8:7.1.2.15+dfsg1-1
 	[trixie] - imagemagick <no-dsa> (Minor issue)
 	NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-wfx3-6g53-9fgc
+	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/fe0a49a58ac5b7a18ff2618b6207dcad71123e43 (7.1.2-14)
+	NOTE: Fixed by: ttps://github.com/ImageMagick/ImageMagick6/commit/eeab39181be971c1b5871dbb82a3d2a666454772 (6.9.13-39)
 CVE-2026-56358 (n8n before 1.123.25 (1.x) and before 2.11.2 (2.x), with the fix also i ...)
 	NOT-FOR-US: n8n
 CVE-2026-56351 (n8n before version 2.4.0 contains a sql injection vulnerability in MyS ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e9bdc3a35eea42bf103e09b7e2ea4583a170ce4d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e9bdc3a35eea42bf103e09b7e2ea4583a170ce4d
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260624/1ff5be37/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list