Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e9bdc3a3 by Salvatore Bonaccorso at 2026-06-24T22:19:02+02:00
Add two new imagemagick issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -59,13 +59,17 @@ CVE-2026-57280 (Jenkins Script Security Plugin
1402.v94c9ce464861 and earlier do
CVE-2026-56761 (hono before 4.12.14 contains an html injection vulnerability
in jsx se ...)
NOT-FOR-US: Hono
CVE-2026-56370 (ImageMagick before 7.1.2-19 contains an out-of-bounds access
vulnerabi ...)
- - imagemagick <unfixed>
+ - imagemagick 8:7.1.2.19+dfsg1-1
[trixie] - imagemagick <no-dsa> (Minor issue)
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-pmpg-6pww-fg6q
+ NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/2ab24d74865ab92faeeefe0fec890abf1e88e57c
(7.1.2-19)
+ NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick6/commit/60b4e60841b429d719c59144e2505c8b0135367d
(6.9.13-44)
CVE-2026-56368 (ImageMagick before 7.1.2-15 contains a memory leak
vulnerability in mu ...)
- - imagemagick <unfixed>
+ - imagemagick 8:7.1.2.15+dfsg1-1
[trixie] - imagemagick <no-dsa> (Minor issue)
NOTE:
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-wfx3-6g53-9fgc
+ NOTE: Fixed by:
https://github.com/ImageMagick/ImageMagick/commit/fe0a49a58ac5b7a18ff2618b6207dcad71123e43
(7.1.2-14)
+ NOTE: Fixed by:
ttps://github.com/ImageMagick/ImageMagick6/commit/eeab39181be971c1b5871dbb82a3d2a666454772
(6.9.13-39)
CVE-2026-56358 (n8n before 1.123.25 (1.x) and before 2.11.2 (2.x), with the
fix also i ...)
NOT-FOR-US: n8n
CVE-2026-56351 (n8n before version 2.4.0 contains a sql injection
vulnerability in MyS ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e9bdc3a35eea42bf103e09b7e2ea4583a170ce4d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e9bdc3a35eea42bf103e09b7e2ea4583a170ce4d
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits