ImageMagick: Fix CVE-2025-53014

Backport the fix for CVE-2025-53014 Upstream-Status: Backport [https://github.com/ImageMagick/ImageMagick/commit/29d82726c7ec20c07c49ba263bdcea16c2618e03] Add below patch to fix CVE-2025-53014 0001-ImageMagick-Fix-CVE-2025-53014.patch Signed-off-by: Divyanshu Rathore <Divyanshu.Rathore@bmwtechworks.in> Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
author: Divyanshu Rathore <Divyanshu.Rathore@bmwtechworks.in> 2025-12-12 20:29:37 +0530
committer: Gyorgy Sarvari <skandigraun@gmail.com> 2025-12-12 22:06:46 +0100
commit: 520f64ef3cffc80644bc072c0d505e170cee4a98 (patch)
tree: 67b80894e59ac34560f34199eb9af7fc9a613d17
parent: cac725f7d272a45a0b40263e3f942353dda696b1 (diff)
download: meta-openembedded-520f64ef3cffc80644bc072c0d505e170cee4a98.tar.gz
2 files changed, 33 insertions, 0 deletions
diff --git a/meta-oe/recipes-support/imagemagick/files/0001-ImageMagick-Fix-CVE-2025-53014.patch b/meta-oe/recipes-support/imagemagick/files/0001-ImageMagick-Fix-CVE-2025-53014.patch
new file mode 100644
index 0000000000..3230519cd1
--- /dev/null
+++ b/meta-oe/recipes-support/imagemagick/files/0001-ImageMagick-Fix-CVE-2025-53014.patch
@@ -0,0 +1,32 @@
+From a16d86759bd9171fca247c4e764ffeeeb7232d9b Mon Sep 17 00:00:00 2001
+From: Divyanshu Rathore <divyanshu.rathore@bmwtechworks.in>
+Date: Mon, 29 Sep 2025 13:56:59 +0530
+Subject: [PATCH 01/18] ImageMagick: Fix CVE-2025-53014
+Correct out of bounds read of a single byte.
+CVE: CVE-2025-53014
+Upstream-Status: Backport [https://github.com/ImageMagick/ImageMagick/commit/29d82726c7ec20c07c49ba263bdcea16c2618e03.patch]
+Comment: Refreshed hunk to match latest kirkstone
+Signed-off-by: Divyanshu Rathore <divyanshu.rathore@bmwtechworks.in>
+---
+ MagickCore/image.c | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+diff --git a/MagickCore/image.c b/MagickCore/image.c
+index 34804e522..fe2a1cb5f 100644
+--- a/MagickCore/image.c
+++ b/MagickCore/image.c
+@@ -1661,7 +1661,7 @@ MagickExport size_t InterpretImageFilename(const ImageInfo *image_info,
+     q=(char *) p+1;
+     if (*q == '%')
+       {
+-        p=q+1;
+        p++;
+         continue;
+       }
+     field_width=0;
+-- 
+2.34.1
diff --git a/meta-oe/recipes-support/imagemagick/imagemagick_7.0.10.bb b/meta-oe/recipes-support/imagemagick/imagemagick_7.0.10.bb
index f567158693..fa06dd45ca 100644
--- a/meta-oe/recipes-support/imagemagick/imagemagick_7.0.10.bb
+++ b/meta-oe/recipes-support/imagemagick/imagemagick_7.0.10.bb
@@ -26,6 +26,7 @@ SRC_URI = "git://github.com/ImageMagick/ImageMagick.git;branch=main;protocol=htt
    file://CVE-2023-34474.patch \
    file://CVE-2023-5341.patch \
    file://CVE-2022-28463.patch \
+    file://0001-ImageMagick-Fix-CVE-2025-53014.patch \
 "
 SRCREV = "35b4991eb0939a327f3489988c366e21068b0178"
author	Divyanshu Rathore <Divyanshu.Rathore@bmwtechworks.in>	2025-12-12 20:29:37 +0530
committer	Gyorgy Sarvari <skandigraun@gmail.com>	2025-12-12 22:06:46 +0100
commit	520f64ef3cffc80644bc072c0d505e170cee4a98 (patch)
tree	67b80894e59ac34560f34199eb9af7fc9a613d17
parent	cac725f7d272a45a0b40263e3f942353dda696b1 (diff)
download	meta-openembedded-520f64ef3cffc80644bc072c0d505e170cee4a98.tar.gz

diff --git a/meta-oe/recipes-support/imagemagick/files/0001-ImageMagick-Fix-CVE-2025-53014.patch b/meta-oe/recipes-support/imagemagick/files/0001-ImageMagick-Fix-CVE-2025-53014.patch new file mode 100644 index 0000000000..3230519cd1 --- /dev/null +++ b/meta-oe/recipes-support/imagemagick/files/0001-ImageMagick-Fix-CVE-2025-53014.patch
@@ -0,0 +1,32 @@
		1	From a16d86759bd9171fca247c4e764ffeeeb7232d9b Mon Sep 17 00:00:00 2001
		2	From: Divyanshu Rathore <divyanshu.rathore@bmwtechworks.in>
		3	Date: Mon, 29 Sep 2025 13:56:59 +0530
		4	Subject: [PATCH 01/18] ImageMagick: Fix CVE-2025-53014
		5
		6	Correct out of bounds read of a single byte.
		7	CVE: CVE-2025-53014
		8	Upstream-Status: Backport [https://github.com/ImageMagick/ImageMagick/commit/29d82726c7ec20c07c49ba263bdcea16c2618e03.patch]
		9
		10	Comment: Refreshed hunk to match latest kirkstone
		11
		12	Signed-off-by: Divyanshu Rathore <divyanshu.rathore@bmwtechworks.in>
		13	---
		14	MagickCore/image.c \| 2 +-
		15	1 file changed, 1 insertion(+), 1 deletion(-)
		16
		17	diff --git a/MagickCore/image.c b/MagickCore/image.c
		18	index 34804e522..fe2a1cb5f 100644
		19	--- a/MagickCore/image.c
		20	+++ b/MagickCore/image.c
		21	@@ -1661,7 +1661,7 @@ MagickExport size_t InterpretImageFilename(const ImageInfo *image_info,
		22	q=(char *) p+1;
		23	if (*q == '%')
		24	{
		25	- p=q+1;
		26	+ p++;
		27	continue;
		28	}
		29	field_width=0;
		30	--
		31	2.34.1
		32


diff --git a/meta-oe/recipes-support/imagemagick/imagemagick_7.0.10.bb b/meta-oe/recipes-support/imagemagick/imagemagick_7.0.10.bb index f567158693..fa06dd45ca 100644 --- a/meta-oe/recipes-support/imagemagick/imagemagick_7.0.10.bb +++ b/meta-oe/recipes-support/imagemagick/imagemagick_7.0.10.bb
@@ -26,6 +26,7 @@ SRC_URI = "git://github.com/ImageMagick/ImageMagick.git;branch=main;protocol=htt
26	file://CVE-2023-34474.patch \	26	file://CVE-2023-34474.patch \
27	file://CVE-2023-5341.patch \	27	file://CVE-2023-5341.patch \
28	file://CVE-2022-28463.patch \	28	file://CVE-2022-28463.patch \
		29	file://0001-ImageMagick-Fix-CVE-2025-53014.patch \
29	"	30	"
30		31
31	SRCREV = "35b4991eb0939a327f3489988c366e21068b0178"	32	SRCREV = "35b4991eb0939a327f3489988c366e21068b0178"