UbuntuUpdates.org

Package "libmagickwand-dev"

Name: libmagickwand-dev

Description:

image manipulation library -- dummy package
Latest version: 8:7.1.2.3+dfsg1-1ubuntu0.1
Release: questing (25.10)
Level: security
Repository: universe
Head package: imagemagick
Homepage: https://www.imagemagick.org/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "libmagickwand-dev"

All arch deb package
APT INSTALL

Other versions of "libmagickwand-dev" in Questing

Repository Area Version
base universe 8:7.1.2.3+dfsg1-1
updates universe 8:7.1.2.3+dfsg1-1ubuntu0.1

Changelog

Version: 8:7.1.2.3+dfsg1-1ubuntu0.1 2026-05-11 10:07:41 UTC

  imagemagick (8:7.1.2.3+dfsg1-1ubuntu0.1) questing-security; urgency=medium

  * SEURITY UPDATE: Heap information disclosure
    - debian/patches/CVE-2026-24481.patch: Initialize the pixels with
      empty values to prevent possible heap information disclosure (GHSA-
      96pc-27rx-pr36)
    - CVE-2026-24481
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2026-24484-1.patch:
      https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-
      wg3g-gvx5-2pmv
    - debian/patches/CVE-2026-24484-2.patch:
      https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-
      wg3g-gvx5-2pmv
    - CVE-2026-24484
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2026-24485-1.patch: [PATCH]
      https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-
      pqgj-2p96-rx85
    - debian/patches/CVE-2026-24485-2.patch:
      https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-
      pqgj-2p96-rx85
    - CVE-2026-24485
  * SECURITY UPDATE: Path traversal
    - debian/patches/CVE-2026-25576.patch: Fixed out of bounds read in
      multiple coders that read raw pixel data (GHSA-jv4p-gjwq-9r2j)
    - CVE-2026-25576
  * SECURITY UPDATE: Memory leak
    - debian/patches/CVE-2026-25637.patch: Fixed possible memory leak
      (GHSA-gm37-qx7w-p258)
    - CVE-2026-25637
  * SECURITY UPDATE: Memory leak
    - debian/patches/CVE-2026-25638.patch: Fixed memory leak when
      writing MSL files (GHSA-gxcx-qjqp-8vjw)
    - CVE-2026-25638
  * SECURITY UPDATE: Out-of-bounds write
    - debian/patches/CVE-2026-25794.patch: Prevent out of bounds heap
      write in uhdr encoder
      (https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA
      -vhqj-f5cj-9x8h)
    - CVE-2026-25794
  * SECURITY UPDATE: NULL pointer dereference
    - debian/patches/CVE-2026-25795.patch: Fixed NULL pointer
      dereference in ReadSFWImage (GHSA-p33r-fqw2-rqmm)
    - CVE-2026-25795
  * SECURITY UPDATE: Memory leak
    - debian/patches/CVE-2026-25796.patch: Prevent memory leak in early
      exits (GHSA-g2pr-qxjg-7r2w)
    - CVE-2026-25796
  * SECURITY UPDATE: Arbitrary code execution
    - debian/patches/CVE-2026-25797-1.patch: Prevent code injection via
      PostScript header
      (https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA
      -rw6c-xp26-225v)
    - debian/patches/CVE-2026-25797-2.patch: Properly escape the strings
      that are written as raw html (GHSA-rw6c-xp26-225v)
    - CVE-2026-25797
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2026-25798.patch:
      https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-
      p863-5fgm-rgq4
    - CVE-2026-25798
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2026-25799.patch:
      https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-
      543g-8grm-9cw6
    - CVE-2026-25799
  * SECURITY UPDATE: Out of bounds heap write
    - debian/patches/CVE-2026-25897.patch: Added extra check to prevent
      out of bounds heap write on 32-bit systems (GHSA-6j5f-24fw-pqp4)
    - CVE-2026-25897
  * SECURITY UPDATE: Buffer overflow
    - debian/patches/CVE-2026-25898-1.patch: Fixed out of bound read
      with negative pixel index (GHSA-vpxv-r9pg-7gpr)
    - debian/patches/CVE-2026-25898-2.patch: Fixed out of bound read
      with negative pixel index (GHSA-vpxv-r9pg-7gpr)
    - CVE-2026-25898
  * SECURITY UPDATE: Path traversal
    - debian/patches/CVE-2026-25965.patch: Prevent path traversal of
      paths that are blocked in the security policy (GHSA-8jvj-p28h-9gm7)
    - CVE-2026-25965

 -- John Breton <email address hidden> Thu, 07 May 2026 11:42:23 -0400
CVE-2026-24481 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap infor
CVE-2026-24484 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, Magick fails
CVE-2026-24485 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, when a PCD f
CVE-2026-25576 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffe
CVE-2026-25637 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-15, a memory leak in the ASHLAR
CVE-2026-25638 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, memory leak
CVE-2026-25794 ImageMagick is free and open-source software used for editing and manipulating digital images. `WriteUHDRImage` in `coders/uhdr.c` uses `int` arithme
CVE-2026-25795 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, in `ReadSFWI
CVE-2026-25796 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, in `ReadSTEG
CVE-2026-25797 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the ps coder
CVE-2026-25798 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a NULL point
CVE-2026-25799 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a logic erro
CVE-2026-25897 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, an Integer O
CVE-2026-25898 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the UIL and
CVE-2026-25965 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, ImageMagick’


About   -   Send Feedback to @ubuntu_updates