VYPR

rpm package

suse/ImageMagick&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS

pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS

Vulnerabilities (89)

  • CVE-2026-25970Feb 24, 2026
    affected < 7.1.0.9-150400.6.68.2fixed 7.1.0.9-150400.6.68.2

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a signed integer overflow vulnerability in ImageMagick's SIXEL decoder allows an attacker to trigger memory corruption and denial of service wh

  • CVE-2026-25966Feb 24, 2026
    affected < 7.1.0.9-150400.6.68.2fixed 7.1.0.9-150400.6.68.2

    ImageMagick is free and open-source software used for editing and manipulating digital images. The shipped "secure" security policy includes a rule intended to prevent reading/writing from standard streams. However, ImageMagick also supports fd: pseudo-filenames (e.g., fd:0, f

  • CVE-2026-25965Feb 24, 2026
    affected < 7.1.0.9-150400.6.68.2fixed 7.1.0.9-150400.6.68.2

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, ImageMagick’s path security policy is enforced on the raw filename string before the filesystem resolves it. As a result, a policy rule such as

  • CVE-2026-25898Feb 24, 2026
    affected < 7.1.0.9-150400.6.68.2fixed 7.1.0.9-150400.6.68.2

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the UIL and XPM image encoder do not validate the pixel index value returned by `GetPixelIndex()` before using it as an array subscript. In HDR

  • CVE-2026-25897Feb 24, 2026
    affected < 7.1.0.9-150400.6.68.2fixed 7.1.0.9-150400.6.68.2

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, an Integer Overflow vulnerability exists in the sun decoder. On 32-bit systems/builds, a carefully crafted image can lead to an out of bounds h

  • CVE-2026-25799Feb 24, 2026
    affected < 7.1.0.9-150400.6.68.2fixed 7.1.0.9-150400.6.68.2

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a logic error in YUV sampling factor validation allows an invalid sampling factor to bypass checks and trigger a division-by-zero during image

  • CVE-2026-25798Feb 24, 2026
    affected < 7.1.0.9-150400.6.68.2fixed 7.1.0.9-150400.6.68.2

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a NULL pointer dereference in ClonePixelCacheRepository allows a remote attacker to crash any application linked against ImageMagick by supplyi

  • CVE-2026-25797Feb 24, 2026
    affected < 7.1.0.9-150400.6.68.2fixed 7.1.0.9-150400.6.68.2

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the ps coders, responsible for writing PostScript files, fails to sanitize the input before writing it into the PostScript header. An attacker

  • CVE-2026-25796Feb 24, 2026
    affected < 7.1.0.9-150400.6.68.2fixed 7.1.0.9-150400.6.68.2

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, in `ReadSTEGANOImage()` (`coders/stegano.c`), the `watermark` Image object is not freed on three early-return paths, resulting in a definite me

  • CVE-2026-25795Feb 24, 2026
    affected < 7.1.0.9-150400.6.68.2fixed 7.1.0.9-150400.6.68.2

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, in `ReadSFWImage()` (`coders/sfw.c`), when temporary file creation fails, `read_info` is destroyed before its `filename` member is accessed, ca

  • CVE-2026-25638Feb 24, 2026
    affected < 7.1.0.9-150400.6.68.2fixed 7.1.0.9-150400.6.68.2

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, memory leak exists in `coders/msl.c`. In the `WriteMSLImage` function of the `msl.c` file, resources are allocated. But the function returns ea

  • CVE-2026-25637Feb 24, 2026
    affected < 7.1.0.9-150400.6.68.2fixed 7.1.0.9-150400.6.68.2

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-15, a memory leak in the ASHLAR image writer allows an attacker to exhaust process memory by providing a crafted image that results in small objects that are allo

  • CVE-2026-25576Feb 24, 2026
    affected < 7.1.0.9-150400.6.68.2fixed 7.1.0.9-150400.6.68.2

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in multiple raw image format handles. The vulnerability occurs when processing images with -extrac

  • CVE-2026-24485Feb 24, 2026
    affected < 7.1.0.9-150400.6.68.2fixed 7.1.0.9-150400.6.68.2

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, when a PCD file does not contain a valid Sync marker, the DecodeImage() function becomes trapped in an infinite loop while searching for the Sy

  • CVE-2026-24484Feb 24, 2026
    affected < 7.1.0.9-150400.6.68.2fixed 7.1.0.9-150400.6.68.2

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, Magick fails to check for multi-layer nested mvg conversions to svg, leading to DoS. Versions 7.1.2-15 and 6.9.13-40 contain a patch.

  • CVE-2026-24481Feb 24, 2026
    affected < 7.1.0.9-150400.6.68.2fixed 7.1.0.9-150400.6.68.2

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap information disclosure vulnerability exists in ImageMagick's PSD (Adobe Photoshop) format handler. When processing a maliciously crafted

  • CVE-2026-23952Jan 22, 2026
    affected < 7.1.0.9-150400.6.64.1fixed 7.1.0.9-150400.6.64.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. Versions 14.10.1 and below have a NULL pointer dereference vulnerability in the MSL (Magick Scripting Language) parser when processing tags before images are loaded. This can

  • CVE-2026-23876Jan 20, 2026
    affected < 7.1.0.9-150400.6.64.1fixed 7.1.0.9-150400.6.64.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-13 and 6.9.13-38, a heap buffer overflow vulnerability in the XBM image decoder (ReadXBMImage) allows an attacker to write controlled data past the allocated hea

  • CVE-2026-23874Jan 20, 2026
    affected < 7.1.0.9-150400.6.64.1fixed 7.1.0.9-150400.6.64.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. Versions prior to 7.1.2-13 have a stack overflow via infinite recursion in MSL (Magick Scripting Language) `` command when writing to MSL format. Version 7.1.2-13 fixes the issue

  • CVE-2025-68469Dec 18, 2025
    affected < 7.1.0.9-150400.6.58.1fixed 7.1.0.9-150400.6.58.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.1-14, ImageMagick crashes when processing a crafted TIFF file. Version 7.1.1-14 fixes the issue.

Page 4 of 5