Explore top 10 tips to secure your open-source projects now. Read More
×
## This update for ImageMagick fixes the following issues: * CVE-2026-53466: integer overflow in the XCF decoder can result in an out-of- bounds read when a crafted image is read (bsc#1270073). * CVE-2026-53467: allocated memory left unchanged in the MNG decoder can lead to a heap information disclosure (bsc#1270074). * CVE-2026-55594: missing depth check in the MVG decoder will result in a stack overflow when a crafted image is provided (bsc#1270077). * CVE-2026-55595: providing invalid arguments to the `connected-components` option can lead to an infinite loop (bsc#1270079). * CVE-2026-55597: incorrect handling of arguments can cause a heap buffer over-write in the JP2 encoder (bsc#1270080). * CVE-2026-56361: off-by-one error in morphology validation can lead to an out-of-bounds read (bsc#1270001).
* bsc#1265048
* bsc#1268092
* bsc#1268094
* bsc#1268095
* bsc#1268096
* bsc#1268101
* bsc#1268102
* bsc#1268103
* bsc#1268105
* bsc#1268107
* bsc#1268108
* bsc#1268110
* bsc#1268111
* bsc#1268112
* bsc#1268113
* bsc#1268114
* bsc#1268116
* bsc#1268117
* bsc#1268120
* bsc#1268121
* bsc#1268122
* bsc#1268123
* bsc#1268124
* bsc#1268125
* bsc#1268126
* bsc#1268640
* bsc#1268645
* bsc#1268878
* bsc#1268879
* bsc#1268880
* bsc#1269063
* bsc#1269064
* bsc#1270001
* bsc#1270002
* bsc#1270003
* bsc#1270004
* bsc#1270073
* bsc#1270074
* bsc#1270077
* bsc#1270079
* bsc#1270080
* bsc#1271099
Cross-
* CVE-2026-40169
* CVE-2026-42050
* CVE-2026-42326
* CVE-2026-45031
* CVE-2026-45358
* CVE-2026-45359
* CVE-2026-45624
* CVE-2026-45664
* CVE-2026-46520
* CVE-2026-46521
* CVE-2026-46522
* CVE-2026-46523
Get the latest Linux and open source security news straight to your inbox.