Alerts This Week
Warning Icon 1 1,394
Alerts This Week
Warning Icon 1 1,394

Mageia 9 GraphicsMagick Important Heap Overflow Out of Bounds 2026-0117

mageia
Calendar Grey May 7, 2026
Dist Mageia Esm H88
Updated graphicsmagick packages in Mageia 9 address important security flaws including heap overflow vulnerabilities.
MGASA-2026-0117 - Updated graphicsmagick packages fix security vulnerabilities

Summary

Description: ImageMagick has a heap overflow in the pcd decoder that leads to an out of bounds read. (CVE-2026-26284) ImageMagick has an Out-of-Bounds write of a zero byte in its X11 display interaction. (CVE-2026-33535)

References

- https://bugs.mageia.org/show_bug.cgi?id=35408

- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/BMSWBU7XGK6MZYTE62GVV7BFJIH6PSZU/

- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/NPVKK6XVDNZQVOOYGCEQVGQHUWYX64EY/

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-26284

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-33535

Resolution

SRPMS

- 9/core/graphicsmagick-1.3.40-1.5.mga9

- 9/tainted/graphicsmagick-1.3.40-1.5.mga9.tainted

Severity
important
Lowest
Low
Medium
High
Critical

Publication date: 07 May 2026
URL: https://advisories.mageia.org/MGASA-2026-0117.html
Type: security
CVE: CVE-2026-26284, CVE-2026-33535

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here