Explore top 10 tips to secure your open-source projects now. Read More
×1.033 - CVE-2026-14454: Fix mishandling of large EXIF IFD entry count values — treated as negative numbers, could lead to allocation failure and program exit - JPEG: depend on Imager 1.033 for the EXIF fix - Fix thread context object reference count leak in bumpmap and bumpmap_complex. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-5f5efe281d 2026-07-16 01:19:18.912170+00:00 -------------------------------------------------------------------------------- Name : perl-Imager Product : Fedora 44 Version : 1.033 Release : 1.fc44 URL : https://metacpan.org/release/Imager Summary : Perl extension for Generating 24 bit Images Description : Imager is a module for creating and altering images. It can read and write various image formats, draw primitive shapes like lines,and polygons, blend multiple images together in various ways, scale, crop, render text and more. -------------------------------------------------------------------------------- Update Information: 1.033 - CVE-2026-14454: Fix mishandling of large EXIF IFD entry count values — treated as negative numbers, could lead to allocation failure and program exit - JPEG: depend on Imager 1.033 for the EXIF fix - Fix thread context object reference count leak in bumpmap and bumpmap_complex filters - TIFF: fix a leak from processing the TIFF warnings buffer (introduced in Imager 1.021) -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 7 2026 Jitka Plesnikova - 1.033-1 - 1.033 bump (rhbz#2497664) - Fix CVE-2026-14454 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2497664 - perl-Imager-1.033 is available https://bugzilla.redhat.com/show_bug.cgi?id=2497664 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisoryFEDORA-2026-5f5efe281d' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . A critical fix for perl-Imager addresses a mishandling of large EXIF IFD entry counts that can lead to allocation failures.. perl imager fix, fedora security advisory, CVE-2026-14454, EXIF handling, image processing. . Severity: Critical. LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.