rpm package
opensuse/GraphicsMagick&distro=openSUSE Leap 15.6
pkg:rpm/opensuse/GraphicsMagick&distro=openSUSE%20Leap%2015.6
Vulnerabilities (5)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-30883 | — | < 1.3.42-150600.3.15.1 | 1.3.42-150600.3.15.1 | Mar 9, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an extremely large image profile could result in a heap overflow when encoding a PNG image. This vulnerability is fixed in 7.1.2-16 and 6.9.13- | ||
| CVE-2026-28691 | — | < 1.3.42-150600.3.15.1 | 1.3.42-150600.3.15.1 | Mar 9, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an uninitialized pointer dereference vulnerability exists in the JBIG decoder due to a missing check. This vulnerability is fixed in 7.1.2-16 a | ||
| CVE-2026-25799 | — | < 1.3.42-150600.3.10.1 | 1.3.42-150600.3.10.1 | Feb 24, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a logic error in YUV sampling factor validation allows an invalid sampling factor to bypass checks and trigger a division-by-zero during image | ||
| CVE-2025-32460 | — | < 1.3.42-150600.3.7.1 | 1.3.42-150600.3.7.1 | Apr 9, 2025 | GraphicsMagick before 8e56520 has a heap-based buffer over-read in ReadJXLImage in coders/jxl.c, related to an ImportViewPixelArea call. | ||
| CVE-2025-27795 | — | < 1.3.42-150600.3.4.1 | 1.3.42-150600.3.4.1 | Mar 7, 2025 | ReadJXLImage in JXL in GraphicsMagick before 1.3.46 lacks image dimension resource limits. |
- CVE-2026-30883Mar 9, 2026affected < 1.3.42-150600.3.15.1fixed 1.3.42-150600.3.15.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an extremely large image profile could result in a heap overflow when encoding a PNG image. This vulnerability is fixed in 7.1.2-16 and 6.9.13-
- CVE-2026-28691Mar 9, 2026affected < 1.3.42-150600.3.15.1fixed 1.3.42-150600.3.15.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an uninitialized pointer dereference vulnerability exists in the JBIG decoder due to a missing check. This vulnerability is fixed in 7.1.2-16 a
- CVE-2026-25799Feb 24, 2026affected < 1.3.42-150600.3.10.1fixed 1.3.42-150600.3.10.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a logic error in YUV sampling factor validation allows an invalid sampling factor to bypass checks and trigger a division-by-zero during image
- CVE-2025-32460Apr 9, 2025affected < 1.3.42-150600.3.7.1fixed 1.3.42-150600.3.7.1
GraphicsMagick before 8e56520 has a heap-based buffer over-read in ReadJXLImage in coders/jxl.c, related to an ImportViewPixelArea call.
- CVE-2025-27795Mar 7, 2025affected < 1.3.42-150600.3.4.1fixed 1.3.42-150600.3.4.1
ReadJXLImage in JXL in GraphicsMagick before 1.3.46 lacks image dimension resource limits.