Home / mailings [SECURITY] [DSA 6210-1] imagemagick security update
Posted on 14 April 2026
Debian Security Advisory- -------------------------------------------------------------------------
Debian Security Advisory DSA-6210-1 security@debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
April 14, 2026 https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : imagemagick
CVE ID : CVE-2026-25796 CVE-2026-25985 CVE-2026-26284 CVE-2026-26983
CVE-2026-28494 CVE-2026-28686 CVE-2026-28687 CVE-2026-28688
CVE-2026-28689 CVE-2026-28690 CVE-2026-28691 CVE-2026-28692
CVE-2026-28693 CVE-2026-30883 CVE-2026-30936 CVE-2026-30937
CVE-2026-31853 CVE-2026-32259 CVE-2026-32636 CVE-2026-33535
CVE-2026-33536
Multiple security vulnerabilities were discovered in imagemagick,
a software suite used for editing and manipulating digital images, which
could lead to symlink races, information leaks, denial of service
and potentially arbitrary code execution.
For the oldstable distribution (bookworm), these problems have been fixed
in version 8:6.9.11.60+dfsg-1.6+deb12u8.
We recommend that you upgrade your imagemagick packages.
For the detailed security status of imagemagick please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/imagemagick
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: debian-security-announce@lists.debian.org
