SB2026062635 - Anolis OS update for ImageMagick



SB2026062635 - Anolis OS update for ImageMagick

Published: June 26, 2026

Security Bulletin ID SB2026062635
CSH Severity
Medium
Patch available
YES
Number of vulnerabilities 10
Exploitation vector Remote access
Highest impact Denial of service

Breakdown by Severity

Medium 40% Low 60%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 10 vulnerabilities.


1) Integer overflow (CVE-ID: CVE-2026-34238)

CWE-ID: CWE-190 - Integer overflow

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear


The vulnerability allows a remote attacker to cause a denial of service.

The vulnerability exists due to integer overflow in the despeckle operation when processing crafted input on 32-bit builds. A remote attacker can trigger an out-of-bounds write to cause a denial of service.

Only 32-bit builds are vulnerable.


2) Heap-based buffer overflow (CVE-ID: CVE-2026-40169)

CWE-ID: CWE-122 - Heap-based Buffer Overflow

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear


The vulnerability allows a remote attacker to cause a denial of service.

The vulnerability exists due to heap-based buffer overflow in the YAML and JSON encoders when writing yaml or json output. A remote attacker can process a crafted image to cause a denial of service.


3) Allocation of Resources Without Limits or Throttling (CVE-ID: CVE-2026-45031)

CWE-ID: CWE-770 - Allocation of Resources Without Limits or Throttling

CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green


The vulnerability allows a remote attacker to cause a denial of service.

The vulnerability exists due to allocation of resources without limits or throttling in the PSD decoder when decoding a PSD image. A remote attacker can supply a specially crafted PSD image to cause a denial of service.

Other security limits still apply.


4) Out-of-bounds read (CVE-ID: CVE-2026-45359)

CWE-ID: CWE-125 - Out-of-bounds read

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear


The vulnerability allows a remote attacker to disclose sensitive information and cause a denial of service.

The vulnerability exists due to out-of-bounds read in the connected components operation when processing an invalid connected-components:keep-top define value. A remote attacker can supply a crafted connected-components:keep-top value to disclose sensitive information and cause a denial of service.


5) Out-of-bounds read (CVE-ID: CVE-2026-45624)

CWE-ID: CWE-125 - Out-of-bounds read

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear


The vulnerability allows a remote attacker to disclose sensitive information and cause a denial of service.

The vulnerability exists due to out-of-bounds read in the distort operation when performing a polynomial distortion with specific arguments. A remote attacker can supply specific arguments to disclose sensitive information and cause a denial of service.


6) Resource exhaustion (CVE-ID: CVE-2026-45664)

CWE-ID: CWE-400 - Resource exhaustion

CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green


The vulnerability allows a remote attacker to cause a denial of service.

The vulnerability exists due to uncontrolled resource consumption in the MNG decoder when processing crafted MNG images. A remote attacker can supply input that causes the decoder to read more images than the list limit policy allows to cause a denial of service.


7) Stack-based buffer overflow (CVE-ID: CVE-2026-46557)

CWE-ID: CWE-121 - Stack-based buffer overflow

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear


The vulnerability allows a local attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary error in fx operation. A local attacker can trigger stack-based buffer overflow and cause a denial of service condition on the target system.


8) Heap-based buffer overflow (CVE-ID: CVE-2026-46692)

CWE-ID: CWE-122 - Heap-based Buffer Overflow

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear


The vulnerability allows a local privileged user to cause a denial of service.

The vulnerability exists due to heap-based buffer overflow in the distributed pixel cache server when handling connections to the magick -distribute-cache service. A local privileged user can connect to the service to cause a denial of service.


9) Out-of-bounds write (CVE-ID: CVE-2026-48724)

CWE-ID: CWE-787 - Out-of-bounds write

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green


The vulnerability allows a remote attacker to cause a denial of service.

The vulnerability exists due to out-of-bounds write in the Floyd-Steinberg depth dithering functionality when processing a crafted image with a mask. A remote attacker can trick the victim into opening a crafted image to cause a denial of service.

User interaction is required to open or process a crafted image.


10) Uncontrolled Recursion (CVE-ID: CVE-2026-48734)

CWE-ID: CWE-674 - Uncontrolled Recursion

CVSSv4: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green


The vulnerability allows a remote attacker to cause a denial of service.

The vulnerability exists due to uncontrolled recursion in the MVG decoder when parsing a crafted MVG file. A remote attacker can trick the victim into opening a crafted file to cause a denial of service.

User interaction is required to open a crafted file.


Remediation

Install update from vendor's website.