Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
cf5bbad6 by Salvatore Bonaccorso at 2026-02-24T15:00:42+01:00
Add some more imagemagick issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -112,15 +112,28 @@ CVE-2026-25985 (ImageMagick is free and open-source
software used for editing an
CVE-2026-25984
REJECTED
CVE-2026-25983 (ImageMagick is free and open-source software used for editing
and mani ...)
- TODO: check
+ - imagemagick <unfixed>
+ NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-fwqw-2x5x-w566
+ NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/b4f8e1a387dd1d0a0af516071831a235f2fdf437
(7.1.2-14)
+ NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/257200cb21de23404dce5f8261871845d425dee5
(7.1.2-14)
+ NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick6/commit/e5d3ca6dfb76dccb5bdf73c74135e0fde2f9d0b7
(6.9.13-39)
CVE-2026-25982 (ImageMagick is free and open-source software used for editing
and mani ...)
- TODO: check
+ - imagemagick <unfixed>
+ NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-pmq6-8289-hx3v
+ NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/4e1f5381d4ccbb6b71927e94c5d257fa883b3af7
(7.1.2-14)
CVE-2026-25971 (ImageMagick is free and open-source software used for editing
and mani ...)
- TODO: check
+ - imagemagick <unfixed>
+ NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-8mpr-6xr2-chhc
+ NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/9313e530b37272b748898febd42b5949756f0179
(7.1.2-14)
CVE-2026-25970 (ImageMagick is free and open-source software used for editing
and mani ...)
- TODO: check
+ - imagemagick <unfixed>
+ NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-xg29-8ghv-v4xr
+ NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/729253dc16e1a1ec4cac891a12d597e3fa9336b3
(7.1.2-14)
+ NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick6/commit/9dd1ce6d8c1f66971cef275fb31cc079b9f4e186
(6.9.13-39)
CVE-2026-25969 (ImageMagick is free and open-source software used for editing
and mani ...)
- TODO: check
+ - imagemagick <unfixed>
+ NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-xgm3-v4r9-wfgm
+ NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/a253d1b124ebdcc2832daac6f9a35c362635b40e
(7.1.2-14)
CVE-2026-25968 (ImageMagick is free and open-source software used for editing
and mani ...)
TODO: check
CVE-2026-25967 (ImageMagick is free and open-source software used for editing
and mani ...)
@@ -158,7 +171,11 @@ CVE-2026-25637 (ImageMagick is free and open-source
software used for editing an
CVE-2026-25591 (New API is a large language mode (LLM) gateway and artificial
intellig ...)
TODO: check
CVE-2026-25576 (ImageMagick is free and open-source software used for editing
and mani ...)
- TODO: check
+ - imagemagick <unfixed>
+ NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-jv4p-gjwq-9r2j
+ NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/077b42643212d7da8c1a4f6b2cd0067ebca8ec0f
(7.1.2-14)
+ NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick6/commit/95db8ba0f445a798e823a86acdebe97de73de449
(6.9.13-39)
+ NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick6/commit/44b3140f3414ebc02c5fa8b80551f7d33950a87a
(6.9.13-39)
CVE-2026-25545 (Astro is a web framework. Prior to version 9.5.4, Server-Side
Rendered ...)
TODO: check
CVE-2026-25501 (free5GC SMF provides Session Management Function for free5GC,
an open- ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cf5bbad635440c481a2f990859f6432916e83872
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cf5bbad635440c481a2f990859f6432916e83872
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
