[El-errata] ELSA-2026-6713 Important: Oracle Linux 7 ImageMagick security update

Wed Apr 22 11:47:43 UTC 2026

Oracle Linux Security Advisory ELSA-2026-6713

http://linux.oracle.com/errata/ELSA-2026-6713.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
ImageMagick-6.9.10.68-7.0.9.el7_9.i686.rpm
ImageMagick-6.9.10.68-7.0.9.el7_9.x86_64.rpm
ImageMagick-c++-6.9.10.68-7.0.9.el7_9.i686.rpm
ImageMagick-c++-6.9.10.68-7.0.9.el7_9.x86_64.rpm
ImageMagick-c++-devel-6.9.10.68-7.0.9.el7_9.i686.rpm
ImageMagick-c++-devel-6.9.10.68-7.0.9.el7_9.x86_64.rpm
ImageMagick-devel-6.9.10.68-7.0.9.el7_9.i686.rpm
ImageMagick-devel-6.9.10.68-7.0.9.el7_9.x86_64.rpm
ImageMagick-doc-6.9.10.68-7.0.9.el7_9.x86_64.rpm
ImageMagick-perl-6.9.10.68-7.0.9.el7_9.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/ImageMagick-6.9.10.68-7.0.9.el7_9.src.rpm

Related CVEs:

CVE-2026-28691
CVE-2026-28693

Description of changes:

[6.9.10.68-7.0.9]
- Fix CVE-2026-28691 and CVE-2026-28693 [Orabug: 39174244]

[6.9.10.68-7.0.7]
- Fixes Local File Disclosure via Path Traversal (CVE-2026-25965) [Orabug: 39118995]
- Fixes Memory allocation with excessive without limits in the internal SVG decoder (CVE-2026-25985)

[6.9.10.68-7.0.5]
- Fix CVE-2025-62171 and CVE-2026-23876 [Orabug: 38997140]

[6.9.10.68-7.0.3]
- Security update CVE-2025-57803 [Orabug: 38455460]

[6.9.10.68-7.0.1]
- Fix for CVE-2025-55154 [Orabug: 38417011]