[Bug 2392771] New: CVE-2025-57803 ImageMagick: ImageMagick (WriteBMPImage): 32-bit integer overflow when writing BMP scanline stride → heap buffer overflow [epel-10]
https://bugzilla.redhat.com/show_bug.cgi?id=2392771
Bug ID: 2392771 Summary: CVE-2025-57803 ImageMagick: ImageMagick (WriteBMPImage): 32-bit integer overflow when writing BMP scanline stride → heap buffer overflow [epel-10] Product: Fedora EPEL Version: epel10 Status: NEW Whiteboard: {"flaws": ["340cebf1-ee10-4bd7-8754-0f1e66998bc5"]} Component: ImageMagick Keywords: Security, SecurityTracking Severity: high Priority: high Assignee: luya_tfz@thefinalzone.net Reporter: pogwuche@redhat.com QA Contact: extras-qa@fedoraproject.org CC: blaise@gmail.com, davide@cavalca.name, epel-packagers-sig@lists.fedoraproject.org, fedora@famillecollet.com, luya_tfz@thefinalzone.net, michel@michel-slm.name, ngompa13@gmail.com, pampelmuse@gmx.at Blocks: 2391093 (CVE-2025-57803) Target Milestone: --- Classification: Fedora
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
The following link provides references to all essential vulnerability management information. If something is wrong or missing, please contact a member of PSIRT. https://spaces.redhat.com/display/PRODSEC/Vulnerability+Management+-+Essenti...
Referenced Bugs:
https://bugzilla.redhat.com/show_bug.cgi?id=2391093 [Bug 2391093] CVE-2025-57803 imagemagick: ImageMagick (WriteBMPImage): 32-bit integer overflow when writing BMP scanline stride → heap buffer overflow
epel-packagers-sig@lists.fedoraproject.org
-
bugzilla@redhat.com