[Git][security-tracker-team/security-tracker][master] new imagemagick issues

Moritz Muehlenhoff (@jmm) jmm at debian.org
Thu May 21 14:29:13 BST 2026 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
340920fa by Moritz Muehlenhoff at 2026-05-21T15:17:28+02:00
new imagemagick issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,28 @@
+CVE-2026-42326
+	- imagemagick <unfixed>
+	NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-7wff-wpr6-vmhm
+	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/06301590988fc62e17b4ae6e937d411cc1089ef1 (7.1.2-22)
+	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick6/commit/4bbc9cf334ec0c136d4aa8c28afab17120cc954c (6.9.13-47)
+CVE-2026-45031
+	- imagemagick <unfixed>
+	NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-cwpj-h54c-xjpx
+	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/a96763d717e27d6d136aa734d1cf4b33a91555d0 (7.1.2-23)
+	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick6/commit/de0f3f1ee15c783d139135e93cff212ee37e89af (6.9.13-48)
+CVE-2026-45359
+	- imagemagick <unfixed>
+	NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-vhrh-72hq-w8m7
+	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/9f18e2890088705c9a3dc867a7f2e31be50b8f41 (7.1.2-23)
+	NOTE: IM6 seems also affected
+CVE-2026-45358
+	- imagemagick <unfixed>
+	NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-cr6r-hmj8-pr7r
+	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/2cf3b5750bd7c96fbb92c3f02823ecd63f8dd232 (7.1.2-23)
+	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick6/commit/1b962d30cc7ad94d18c5f24c8dbc6d48f534b99d (6.9.13-48)
+CVE-2026-45624
+	- imagemagick <unfixed>
+	NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-pfvh-m9xv-8966
+	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/a66ab7bc559f041b1434606496b5b4b0906ff9a2 (7.1.2-23)
+	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick6/commit/7736b7c458d0c694e26023ad4bd3436fc2f951ff (6.9.13-48)
 CVE-2026-45664
 	- imagemagick <unfixed>
 	NOTE: https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-g5mf-wqq5-vwg6



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/340920fafec6e60dffe930cb2f13b43669a5dfc6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/340920fafec6e60dffe930cb2f13b43669a5dfc6
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260521/9d2e5cb3/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list