VYPR

rpm package

suse/ImageMagick&distro=SUSE Linux Enterprise Module for Development Tools 15 SP7

pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP7

Vulnerabilities (91)

  • CVE-2026-25638Feb 24, 2026
    affected < 7.1.1.43-150700.3.37.1fixed 7.1.1.43-150700.3.37.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, memory leak exists in `coders/msl.c`. In the `WriteMSLImage` function of the `msl.c` file, resources are allocated. But the function returns ea

  • CVE-2026-25637Feb 24, 2026
    affected < 7.1.1.43-150700.3.37.1fixed 7.1.1.43-150700.3.37.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-15, a memory leak in the ASHLAR image writer allows an attacker to exhaust process memory by providing a crafted image that results in small objects that are allo

  • CVE-2026-25576Feb 24, 2026
    affected < 7.1.1.43-150700.3.37.1fixed 7.1.1.43-150700.3.37.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in multiple raw image format handles. The vulnerability occurs when processing images with -extrac

  • CVE-2026-24485Feb 24, 2026
    affected < 7.1.1.43-150700.3.37.1fixed 7.1.1.43-150700.3.37.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, when a PCD file does not contain a valid Sync marker, the DecodeImage() function becomes trapped in an infinite loop while searching for the Sy

  • CVE-2026-24484Feb 24, 2026
    affected < 7.1.1.43-150700.3.37.1fixed 7.1.1.43-150700.3.37.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, Magick fails to check for multi-layer nested mvg conversions to svg, leading to DoS. Versions 7.1.2-15 and 6.9.13-40 contain a patch.

  • CVE-2026-24481Feb 24, 2026
    affected < 7.1.1.43-150700.3.37.1fixed 7.1.1.43-150700.3.37.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap information disclosure vulnerability exists in ImageMagick's PSD (Adobe Photoshop) format handler. When processing a maliciously crafted

  • CVE-2026-23952Jan 22, 2026
    affected < 7.1.1.43-150700.3.33.1fixed 7.1.1.43-150700.3.33.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. Versions 14.10.1 and below have a NULL pointer dereference vulnerability in the MSL (Magick Scripting Language) parser when processing tags before images are loaded. This can

  • CVE-2026-23876Jan 20, 2026
    affected < 7.1.1.43-150700.3.33.1fixed 7.1.1.43-150700.3.33.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-13 and 6.9.13-38, a heap buffer overflow vulnerability in the XBM image decoder (ReadXBMImage) allows an attacker to write controlled data past the allocated hea

  • CVE-2026-23874Jan 20, 2026
    affected < 7.1.1.43-150700.3.33.1fixed 7.1.1.43-150700.3.33.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. Versions prior to 7.1.2-13 have a stack overflow via infinite recursion in MSL (Magick Scripting Language) `` command when writing to MSL format. Version 7.1.2-13 fixes the issue

  • CVE-2026-22770Jan 20, 2026
    affected < 7.1.1.43-150700.3.33.1fixed 7.1.1.43-150700.3.33.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. The BilateralBlurImage method will allocate a set of double buffers inside AcquireBilateralTLS. But, in versions prior to 7.1.2-13, the last element in the set is not properly initializ

  • CVE-2025-69204Dec 30, 2025
    affected < 7.1.1.43-150700.3.30.1fixed 7.1.1.43-150700.3.30.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, in the WriteSVGImage function, using an int variable to store number_attributes caused an integer overflow. This, in turn, triggered a buffer overflow and cau

  • CVE-2025-68950Dec 30, 2025
    affected < 7.1.1.43-150700.3.30.1fixed 7.1.1.43-150700.3.30.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, Magick fails to check for circular references between two MVGs, leading to a stack overflow. This is a DoS vulnerability, and any situation that allows readin

  • CVE-2025-68618Dec 30, 2025
    affected < 7.1.1.43-150700.3.30.1fixed 7.1.1.43-150700.3.30.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, using Magick to read a malicious SVG file resulted in a DoS attack. Version 7.1.2-12 fixes the issue.

  • CVE-2025-66628Dec 10, 2025
    affected < 7.1.1.43-150700.3.27.1fixed 7.1.1.43-150700.3.27.1

    ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM (PSX TIM) image parser contains a critical integer overflow vulnerability in its ReadTIMImage function (coders/tim.c). The code reads width and height (16-bi

  • CVE-2025-65955Dec 2, 2025
    affected < 7.1.1.43-150700.3.27.1fixed 7.1.1.43-150700.3.27.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-9 and 6.9.13-34, there is a vulnerability in ImageMagick’s Magick++ layer that manifests when Options::fontFamily is invoked with an empty string. Clearing a font family

  • CVE-2025-62594Oct 27, 2025
    affected < 7.1.1.43-150700.3.22.1fixed 7.1.1.43-150700.3.22.1

    ImageMagick is a software suite to create, edit, compose, or convert bitmap images. ImageMagick versions prior to 7.1.2-8 are vulnerable to denial-of-service due to unsigned integer underflow and division-by-zero in the CLAHEImage function. When tile width or height is zero, unsi

  • CVE-2025-62171Oct 17, 2025
    affected < 7.1.1.43-150700.3.19.1fixed 7.1.1.43-150700.3.19.1

    ImageMagick is an open source software suite for displaying, converting, and editing raster image files. In ImageMagick versions prior to 7.1.2-7 and 6.9.13-32, an integer overflow vulnerability exists in the BMP decoder on 32-bit systems. The vulnerability occurs in coders/bmp.c

  • CVE-2025-57807Sep 5, 2025
    affected < 7.1.1.43-150700.3.16.1fixed 7.1.1.43-150700.3.16.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. ImageMagick versions lower than 14.8.2 include insecure functions: SeekBlob(), which permits advancing the stream offset beyond the current end without increasing capacity, and WriteBl

  • CVE-2025-57803Aug 26, 2025
    affected < 7.1.1.43-150700.3.13.1fixed 7.1.1.43-150700.3.13.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2 for ImageMagick's 32-bit build, a 32-bit integer overflow in the BMP encoder’s scanline-stride computation collapses bytes_per_line (stride) to a

  • CVE-2025-55298Aug 26, 2025
    affected < 7.1.1.43-150700.3.13.1fixed 7.1.1.43-150700.3.13.1

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to ImageMagick versions 6.9.13-28 and 7.1.2-2, a format string bug vulnerability exists in InterpretImageFilename function where user input is directly passed to FormatLocaleStrin

Page 4 of 5