Mageia 9 Vulnerabilities in GraphicsMagick and libpng Addressed

Mageia 9 Vulnerabilities in GraphicsMagick and libpng Addressed

First seen 28 Mar 2026, 16:00 UTC Linuxsecurity 71% similarity 57.8

Article Content

Browse articles
ThreatCluster

Recent updates to Mageia 9 have addressed critical vulnerabilities in GraphicsMagick and libpng. GraphicsMagick was found to have a stack write buffer overflow (CVE-2026-28690) and a heap overflow (CVE-2026-30883), both published on 2026-03-09. These vulnerabilities could be exploited to execute arbitrary code or crash applications. Additionally, libpng has been updated to fix a use-after-free vulnerability (CVE-2026-33416) and an out-of-bounds read/write issue (CVE-2026-33636), published on 2026-03-26. The vulnerabilities affect users of Mageia 9 who utilize these libraries for image processing. Users are advised to update their packages to mitigate potential exploitation risks. The updates are part of ongoing efforts to secure the Mageia operating system against emerging threats.

Key Points: • GraphicsMagick and libpng vulnerabilities have been patched in Mageia 9. • CVE-2026-28690 and CVE-2026-30883 involve buffer overflows in GraphicsMagick. • CVE-2026-33416 and CVE-2026-33636 address critical issues in libpng.

ThreatCluster AI

Timeline

2026-03-09
CVE-2026-28690 and CVE-2026-30883 published
2026-03-25
Mageia 9 GraphicsMagick update released
2026-03-26
CVE-2026-33416 and CVE-2026-33636 published
2026-03-28
Mageia 9 libpng update released

Community

Browse all →