Advisories ยป MGASA-2025-0148

Updated graphicsmagick packages fix security vulnerabilities

Publication date: 05 May 2025
Modification date: 05 May 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-32460

Description

GraphicsMagick before 8e56520 has a heap-based buffer over-read in
ReadJXLImage in coders/jxl.c, related to an ImportViewPixelArea call.
(CVE-2025-32460)

References

SRPMS

9/core

9/tainted