Explore top 10 tips to secure your open-source projects now. Read More
×1.033 - CVE-2026-14454: Fix mishandling of large EXIF IFD entry count values — treated as negative numbers, could lead to allocation failure and program exit - JPEG: depend on Imager 1.033 for the EXIF fix - Fix thread context object reference count leak in bumpmap and bumpmap_complex. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-38f958d25a 2026-07-16 01:28:35.510772+00:00 -------------------------------------------------------------------------------- Name : perl-Imager Product : Fedora 43 Version : 1.033 Release : 1.fc43 URL : https://metacpan.org/release/Imager Summary : Perl extension for Generating 24 bit Images Description : Imager is a module for creating and altering images. It can read and write various image formats, draw primitive shapes like lines,and polygons, blend multiple images together in various ways, scale, crop, render text and more. -------------------------------------------------------------------------------- Update Information: 1.033 - CVE-2026-14454: Fix mishandling of large EXIF IFD entry count values — treated as negative numbers, could lead to allocation failure and program exit - JPEG: depend on Imager 1.033 for the EXIF fix - Fix thread context object reference count leak in bumpmap and bumpmap_complex filters - TIFF: fix a leak from processing the TIFF warnings buffer (introduced in Imager 1.021) -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 7 2026 Jitka Plesnikova - 1.033-1 - 1.033 bump (rhbz#2497664) - Fix CVE-2026-14454 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2497664 - perl-Imager-1.033 is available https://bugzilla.redhat.com/show_bug.cgi?id=2497664 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisoryFEDORA-2026-38f958d25a' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Critical fix for perl-Imager on Fedora addressing EXIF mishandling, memory leaks and allocation issues. Install promptly.. perl Imager, Fedora security fix, image processing module, EXIF handling issue. . Severity: Critical. LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.