[Git][security-tracker-team/security-tracker][master] new imagemagick issue
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Thu Mar 19 11:53:07 GMT 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
763958c4 by Moritz Muehlenhoff at 2026-03-19T12:52:46+01:00
new imagemagick issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -62,7 +62,10 @@ CVE-2026-32698 (OpenProject is an open-source, web-based project management soft
CVE-2026-32638 (StudioCMS is a server-side-rendered, Astro native, headless content ma ...)
NOT-FOR-US: StudioCMS
CVE-2026-32636 (ImageMagick is free and open-source software used for editing and mani ...)
- TODO: check
+ - imagemagick <unfixed>
+ NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-gc62-2v5p-qpmp
+ NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/361b42c91d173cfb4bd8f39898c599feef6a1e55 (7.1.2-17)
+ NOTE: IM6 seems still unfixed
CVE-2026-32321 (ClipBucket v5 is an open source video sharing platform. An authenticat ...)
NOT-FOR-US: ClipBucket
CVE-2026-32255 (Kan is an open-source project management tool. In versions 0.5.4 and b ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/763958c4d9084ab63e2afa2a58f28e7010fe06ad
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/763958c4d9084ab63e2afa2a58f28e7010fe06ad
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260319/d02bb0fd/attachment.htm>
More information about the debian-security-tracker-commits
mailing list