UBUNTU-CVE-2026-1837

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2026-1837

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-1837.json

JSON Data

https://api.test.osv.dev/v1/vulns/UBUNTU-CVE-2026-1837

Upstream

CVE-2026-1837

Published

2026-02-11T16:16:00Z

Modified

2026-02-18T17:31:18Z

Severity

8.7 (High) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVSS Calculator
Ubuntu - high

Summary

[none]

Details

A specially-crafted file can cause libjxl's decoder to write pixel data to uninitialized unallocated memory. Soon after that data from another uninitialized unallocated region is copied to pixel data. This can be done by requesting color transformation of grayscale images to another grayscale color space. Buffers allocated for 1-float-per-pixel are used as if they are allocated for 3-float-per-pixel. That happens only if LCMS2 is used as CMS engine. There is another CMS engine available (selected by build flags).

References

Affected packages

Ubuntu:25.10

graphicsmagick

Package

Name: graphicsmagick
Purl: pkg:deb/ubuntu/graphicsmagick@1.4+really1.3.45+hg17696-1build1?arch=source&distro=questing

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.4+really1.3.45+hg17689-1

1.4+really1.3.45+hg17696-1

1.4+really1.3.45+hg17696-1build1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "graphicsmagick",
            "binary_version": "1.4+really1.3.45+hg17696-1build1"
        },
        {
            "binary_name": "graphicsmagick-imagemagick-compat",
            "binary_version": "1.4+really1.3.45+hg17696-1build1"
        },
        {
            "binary_name": "graphicsmagick-libmagick-dev-compat",
            "binary_version": "1.4+really1.3.45+hg17696-1build1"
        },
        {
            "binary_name": "libgraphics-magick-perl",
            "binary_version": "1.4+really1.3.45+hg17696-1build1"
        },
        {
            "binary_name": "libgraphicsmagick++-q16-12t64",
            "binary_version": "1.4+really1.3.45+hg17696-1build1"
        },
        {
            "binary_name": "libgraphicsmagick++1-dev",
            "binary_version": "1.4+really1.3.45+hg17696-1build1"
        },
        {
            "binary_name": "libgraphicsmagick-q16-3t64",
            "binary_version": "1.4+really1.3.45+hg17696-1build1"
        },
        {
            "binary_name": "libgraphicsmagick1-dev",
            "binary_version": "1.4+really1.3.45+hg17696-1build1"
        }
    ],
    "priority_reason": "Decoding a specially crafted file could lead to code execution via a buffer overflow"
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-1837.json"

Ubuntu:Pro:14.04:LTS

graphicsmagick

Package

Name: graphicsmagick
Purl: pkg:deb/ubuntu/graphicsmagick@1.3.18-1ubuntu3.1+esm8?arch=source&distro=esm-infra-legacy/trusty

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.3.16-1.1ubuntu2

1.3.16-1.1ubuntu3

1.3.18-1ubuntu3

1.3.18-1ubuntu3.1

1.3.18-1ubuntu3.1+esm1

1.3.18-1ubuntu3.1+esm2

1.3.18-1ubuntu3.1+esm3

1.3.18-1ubuntu3.1+esm4

1.3.18-1ubuntu3.1+esm5

1.3.18-1ubuntu3.1+esm6

1.3.18-1ubuntu3.1+esm7

1.3.18-1ubuntu3.1+esm8

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "graphicsmagick",
            "binary_version": "1.3.18-1ubuntu3.1+esm8"
        },
        {
            "binary_name": "graphicsmagick-imagemagick-compat",
            "binary_version": "1.3.18-1ubuntu3.1+esm8"
        },
        {
            "binary_name": "graphicsmagick-libmagick-dev-compat",
            "binary_version": "1.3.18-1ubuntu3.1+esm8"
        },
        {
            "binary_name": "libgraphics-magick-perl",
            "binary_version": "1.3.18-1ubuntu3.1+esm8"
        },
        {
            "binary_name": "libgraphicsmagick++1-dev",
            "binary_version": "1.3.18-1ubuntu3.1+esm8"
        },
        {
            "binary_name": "libgraphicsmagick++3",
            "binary_version": "1.3.18-1ubuntu3.1+esm8"
        },
        {
            "binary_name": "libgraphicsmagick1-dev",
            "binary_version": "1.3.18-1ubuntu3.1+esm8"
        },
        {
            "binary_name": "libgraphicsmagick3",
            "binary_version": "1.3.18-1ubuntu3.1+esm8"
        }
    ],
    "priority_reason": "Decoding a specially crafted file could lead to code execution via a buffer overflow"
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-1837.json"

Ubuntu:Pro:16.04:LTS

graphicsmagick

Package

Name: graphicsmagick
Purl: pkg:deb/ubuntu/graphicsmagick@1.3.23-1ubuntu0.6+esm2?arch=source&distro=esm-apps/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.3.21-3

1.3.23-1

1.3.23-1build1

1.3.23-1ubuntu0.1

1.3.23-1ubuntu0.1+esm1

1.3.23-1ubuntu0.2

1.3.23-1ubuntu0.3

1.3.23-1ubuntu0.4

1.3.23-1ubuntu0.5

1.3.23-1ubuntu0.6

1.3.23-1ubuntu0.6+esm1

1.3.23-1ubuntu0.6+esm2

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "graphicsmagick",
            "binary_version": "1.3.23-1ubuntu0.6+esm2"
        },
        {
            "binary_name": "graphicsmagick-imagemagick-compat",
            "binary_version": "1.3.23-1ubuntu0.6+esm2"
        },
        {
            "binary_name": "graphicsmagick-libmagick-dev-compat",
            "binary_version": "1.3.23-1ubuntu0.6+esm2"
        },
        {
            "binary_name": "libgraphics-magick-perl",
            "binary_version": "1.3.23-1ubuntu0.6+esm2"
        },
        {
            "binary_name": "libgraphicsmagick++-q16-12",
            "binary_version": "1.3.23-1ubuntu0.6+esm2"
        },
        {
            "binary_name": "libgraphicsmagick++1-dev",
            "binary_version": "1.3.23-1ubuntu0.6+esm2"
        },
        {
            "binary_name": "libgraphicsmagick-q16-3",
            "binary_version": "1.3.23-1ubuntu0.6+esm2"
        },
        {
            "binary_name": "libgraphicsmagick1-dev",
            "binary_version": "1.3.23-1ubuntu0.6+esm2"
        }
    ],
    "priority_reason": "Decoding a specially crafted file could lead to code execution via a buffer overflow"
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-1837.json"

Ubuntu:Pro:18.04:LTS

graphicsmagick

Package

Name: graphicsmagick
Purl: pkg:deb/ubuntu/graphicsmagick@1.3.28-2ubuntu0.2+esm1?arch=source&distro=esm-apps/bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.3.26-15

1.3.26-16

1.3.26-19

1.3.27-1

1.3.27-2

1.3.27-3

1.3.28-1

1.3.28-2

1.3.28-2ubuntu0.1

1.3.28-2ubuntu0.1+esm1

1.3.28-2ubuntu0.2

1.3.28-2ubuntu0.2+esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "graphicsmagick",
            "binary_version": "1.3.28-2ubuntu0.2+esm1"
        },
        {
            "binary_name": "graphicsmagick-imagemagick-compat",
            "binary_version": "1.3.28-2ubuntu0.2+esm1"
        },
        {
            "binary_name": "graphicsmagick-libmagick-dev-compat",
            "binary_version": "1.3.28-2ubuntu0.2+esm1"
        },
        {
            "binary_name": "libgraphics-magick-perl",
            "binary_version": "1.3.28-2ubuntu0.2+esm1"
        },
        {
            "binary_name": "libgraphicsmagick++-q16-12",
            "binary_version": "1.3.28-2ubuntu0.2+esm1"
        },
        {
            "binary_name": "libgraphicsmagick++1-dev",
            "binary_version": "1.3.28-2ubuntu0.2+esm1"
        },
        {
            "binary_name": "libgraphicsmagick-q16-3",
            "binary_version": "1.3.28-2ubuntu0.2+esm1"
        },
        {
            "binary_name": "libgraphicsmagick1-dev",
            "binary_version": "1.3.28-2ubuntu0.2+esm1"
        }
    ],
    "priority_reason": "Decoding a specially crafted file could lead to code execution via a buffer overflow"
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-1837.json"

Ubuntu:Pro:20.04:LTS

graphicsmagick

Package

Name: graphicsmagick
Purl: pkg:deb/ubuntu/graphicsmagick@1.4+really1.3.35-1ubuntu0.1?arch=source&distro=esm-apps/focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.4+really1.3.33+hg16115-1

1.4+really1.3.33+hg16115-1build1

1.4+really1.3.33+hg16117-1

1.4+really1.3.34-1

1.4+really1.3.34-2

1.4+really1.3.34+hg16181-1

1.4+really1.3.35-1

1.4+really1.3.35-1ubuntu0.1~esm1

1.4+really1.3.35-1ubuntu0.1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "graphicsmagick",
            "binary_version": "1.4+really1.3.35-1ubuntu0.1"
        },
        {
            "binary_name": "graphicsmagick-imagemagick-compat",
            "binary_version": "1.4+really1.3.35-1ubuntu0.1"
        },
        {
            "binary_name": "graphicsmagick-libmagick-dev-compat",
            "binary_version": "1.4+really1.3.35-1ubuntu0.1"
        },
        {
            "binary_name": "libgraphics-magick-perl",
            "binary_version": "1.4+really1.3.35-1ubuntu0.1"
        },
        {
            "binary_name": "libgraphicsmagick++-q16-12",
            "binary_version": "1.4+really1.3.35-1ubuntu0.1"
        },
        {
            "binary_name": "libgraphicsmagick++1-dev",
            "binary_version": "1.4+really1.3.35-1ubuntu0.1"
        },
        {
            "binary_name": "libgraphicsmagick-q16-3",
            "binary_version": "1.4+really1.3.35-1ubuntu0.1"
        },
        {
            "binary_name": "libgraphicsmagick1-dev",
            "binary_version": "1.4+really1.3.35-1ubuntu0.1"
        }
    ],
    "priority_reason": "Decoding a specially crafted file could lead to code execution via a buffer overflow"
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-1837.json"

Ubuntu:Pro:22.04:LTS

graphicsmagick

Package

Name: graphicsmagick
Purl: pkg:deb/ubuntu/graphicsmagick@1.4+really1.3.38-1ubuntu0.1+esm1?arch=source&distro=esm-apps/jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.4+really1.3.36+hg16481-2

1.4+really1.3.37-1

1.4+really1.3.37-1build1

1.4+really1.3.37+hg16662-1ubuntu1

1.4+really1.3.38-1

1.4+really1.3.38-1ubuntu0.1

1.4+really1.3.38-1ubuntu0.1+esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "graphicsmagick",
            "binary_version": "1.4+really1.3.38-1ubuntu0.1+esm1"
        },
        {
            "binary_name": "graphicsmagick-imagemagick-compat",
            "binary_version": "1.4+really1.3.38-1ubuntu0.1+esm1"
        },
        {
            "binary_name": "graphicsmagick-libmagick-dev-compat",
            "binary_version": "1.4+really1.3.38-1ubuntu0.1+esm1"
        },
        {
            "binary_name": "libgraphics-magick-perl",
            "binary_version": "1.4+really1.3.38-1ubuntu0.1+esm1"
        },
        {
            "binary_name": "libgraphicsmagick++-q16-12",
            "binary_version": "1.4+really1.3.38-1ubuntu0.1+esm1"
        },
        {
            "binary_name": "libgraphicsmagick++1-dev",
            "binary_version": "1.4+really1.3.38-1ubuntu0.1+esm1"
        },
        {
            "binary_name": "libgraphicsmagick-q16-3",
            "binary_version": "1.4+really1.3.38-1ubuntu0.1+esm1"
        },
        {
            "binary_name": "libgraphicsmagick1-dev",
            "binary_version": "1.4+really1.3.38-1ubuntu0.1+esm1"
        }
    ],
    "priority_reason": "Decoding a specially crafted file could lead to code execution via a buffer overflow"
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-1837.json"

Ubuntu:Pro:24.04:LTS

graphicsmagick

Package

Name: graphicsmagick
Purl: pkg:deb/ubuntu/graphicsmagick@1.4+really1.3.42-1.1ubuntu0.1~esm1?arch=source&distro=esm-apps/noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.4+really1.3.42-1

1.4+really1.3.42-1build1

1.4+really1.3.42-1.1build1

1.4+really1.3.42-1.1build2

1.4+really1.3.42-1.1build3

1.4+really1.3.42-1.1ubuntu0.1~esm1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "graphicsmagick",
            "binary_version": "1.4+really1.3.42-1.1ubuntu0.1~esm1"
        },
        {
            "binary_name": "graphicsmagick-imagemagick-compat",
            "binary_version": "1.4+really1.3.42-1.1ubuntu0.1~esm1"
        },
        {
            "binary_name": "graphicsmagick-libmagick-dev-compat",
            "binary_version": "1.4+really1.3.42-1.1ubuntu0.1~esm1"
        },
        {
            "binary_name": "libgraphics-magick-perl",
            "binary_version": "1.4+really1.3.42-1.1ubuntu0.1~esm1"
        },
        {
            "binary_name": "libgraphicsmagick++-q16-12t64",
            "binary_version": "1.4+really1.3.42-1.1ubuntu0.1~esm1"
        },
        {
            "binary_name": "libgraphicsmagick++1-dev",
            "binary_version": "1.4+really1.3.42-1.1ubuntu0.1~esm1"
        },
        {
            "binary_name": "libgraphicsmagick-q16-3t64",
            "binary_version": "1.4+really1.3.42-1.1ubuntu0.1~esm1"
        },
        {
            "binary_name": "libgraphicsmagick1-dev",
            "binary_version": "1.4+really1.3.42-1.1ubuntu0.1~esm1"
        }
    ],
    "priority_reason": "Decoding a specially crafted file could lead to code execution via a buffer overflow"
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-1837.json"