Critical ImageMagick Vulnerabilities Affecting Multiple Ubuntu Versions

Multiple vulnerabilities in ImageMagick have been identified, affecting Ubuntu 18.04 LTS, 20.04 LTS, 22.04 LTS, and 24.04 LTS. Key issues include a heap buffer over-read and a stack buffer overflow, which could lead to information disclosure and arbitrary code execution, respectively. The vulnerabilities are tracked under CVEs: CVE-2026-27798, CVE-2026-27799, and CVE-2026-28690. Additionally, CVE-2026-28691 and CVE-2026-28692 were also discovered, which could result in denial of service and further information disclosure. Users are advised to update their systems to mitigate these risks. The vulnerabilities were disclosed in a security advisory published on June 24, 2026, with a patch available for affected systems. The issues were confirmed by Ubuntu and Linuxsecurity reports.

Key Points: • ImageMagick vulnerabilities affect Ubuntu 18.04, 20.04, 22.04, and 24.04 LTS. • CVE-2026-28690 allows for arbitrary code execution via a stack buffer overflow. • Users must update their systems to the latest ImageMagick versions to mitigate risks.