rpm package
suse/ImageMagick&distro=SUSE Linux Enterprise Server 16.0
pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%2016.0
Vulnerabilities (29)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-68618 | — | < 7.1.2.0-160000.5.1 | 7.1.2.0-160000.5.1 | Dec 30, 2025 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, using Magick to read a malicious SVG file resulted in a DoS attack. Version 7.1.2-12 fixes the issue. | ||
| CVE-2025-66628 | — | < 7.1.2.0-160000.5.1 | 7.1.2.0-160000.5.1 | Dec 10, 2025 | ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM (PSX TIM) image parser contains a critical integer overflow vulnerability in its ReadTIMImage function (coders/tim.c). The code reads width and height (16-bi | ||
| CVE-2025-65955 | — | < 7.1.2.0-160000.5.1 | 7.1.2.0-160000.5.1 | Dec 2, 2025 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-9 and 6.9.13-34, there is a vulnerability in ImageMagick’s Magick++ layer that manifests when Options::fontFamily is invoked with an empty string. Clearing a font family | ||
| CVE-2025-62594 | — | < 7.1.2.0-160000.4.1 | 7.1.2.0-160000.4.1 | Oct 27, 2025 | ImageMagick is a software suite to create, edit, compose, or convert bitmap images. ImageMagick versions prior to 7.1.2-8 are vulnerable to denial-of-service due to unsigned integer underflow and division-by-zero in the CLAHEImage function. When tile width or height is zero, unsi | ||
| CVE-2025-62171 | — | < 7.1.2.0-160000.4.1 | 7.1.2.0-160000.4.1 | Oct 17, 2025 | ImageMagick is an open source software suite for displaying, converting, and editing raster image files. In ImageMagick versions prior to 7.1.2-7 and 6.9.13-32, an integer overflow vulnerability exists in the BMP decoder on 32-bit systems. The vulnerability occurs in coders/bmp.c | ||
| CVE-2025-57807 | — | < 7.1.2.0-160000.4.1 | 7.1.2.0-160000.4.1 | Sep 5, 2025 | ImageMagick is free and open-source software used for editing and manipulating digital images. ImageMagick versions lower than 14.8.2 include insecure functions: SeekBlob(), which permits advancing the stream offset beyond the current end without increasing capacity, and WriteBl | ||
| CVE-2025-57803 | — | < 7.1.2.0-160000.4.1 | 7.1.2.0-160000.4.1 | Aug 26, 2025 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2 for ImageMagick's 32-bit build, a 32-bit integer overflow in the BMP encoder’s scanline-stride computation collapses bytes_per_line (stride) to a | ||
| CVE-2025-55298 | — | < 7.1.2.0-160000.4.1 | 7.1.2.0-160000.4.1 | Aug 26, 2025 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to ImageMagick versions 6.9.13-28 and 7.1.2-2, a format string bug vulnerability exists in InterpretImageFilename function where user input is directly passed to FormatLocaleStrin | ||
| CVE-2025-55212 | — | < 7.1.2.0-160000.4.1 | 7.1.2.0-160000.4.1 | Aug 26, 2025 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2, passing a geometry string containing only a colon (":") to montage -geometry leads GetGeometry() to set width/height to 0. Later, ThumbnailImage |
- CVE-2025-68618Dec 30, 2025affected < 7.1.2.0-160000.5.1fixed 7.1.2.0-160000.5.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, using Magick to read a malicious SVG file resulted in a DoS attack. Version 7.1.2-12 fixes the issue.
- CVE-2025-66628Dec 10, 2025affected < 7.1.2.0-160000.5.1fixed 7.1.2.0-160000.5.1
ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM (PSX TIM) image parser contains a critical integer overflow vulnerability in its ReadTIMImage function (coders/tim.c). The code reads width and height (16-bi
- CVE-2025-65955Dec 2, 2025affected < 7.1.2.0-160000.5.1fixed 7.1.2.0-160000.5.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-9 and 6.9.13-34, there is a vulnerability in ImageMagick’s Magick++ layer that manifests when Options::fontFamily is invoked with an empty string. Clearing a font family
- CVE-2025-62594Oct 27, 2025affected < 7.1.2.0-160000.4.1fixed 7.1.2.0-160000.4.1
ImageMagick is a software suite to create, edit, compose, or convert bitmap images. ImageMagick versions prior to 7.1.2-8 are vulnerable to denial-of-service due to unsigned integer underflow and division-by-zero in the CLAHEImage function. When tile width or height is zero, unsi
- CVE-2025-62171Oct 17, 2025affected < 7.1.2.0-160000.4.1fixed 7.1.2.0-160000.4.1
ImageMagick is an open source software suite for displaying, converting, and editing raster image files. In ImageMagick versions prior to 7.1.2-7 and 6.9.13-32, an integer overflow vulnerability exists in the BMP decoder on 32-bit systems. The vulnerability occurs in coders/bmp.c
- CVE-2025-57807Sep 5, 2025affected < 7.1.2.0-160000.4.1fixed 7.1.2.0-160000.4.1
ImageMagick is free and open-source software used for editing and manipulating digital images. ImageMagick versions lower than 14.8.2 include insecure functions: SeekBlob(), which permits advancing the stream offset beyond the current end without increasing capacity, and WriteBl
- CVE-2025-57803Aug 26, 2025affected < 7.1.2.0-160000.4.1fixed 7.1.2.0-160000.4.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2 for ImageMagick's 32-bit build, a 32-bit integer overflow in the BMP encoder’s scanline-stride computation collapses bytes_per_line (stride) to a
- CVE-2025-55298Aug 26, 2025affected < 7.1.2.0-160000.4.1fixed 7.1.2.0-160000.4.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to ImageMagick versions 6.9.13-28 and 7.1.2-2, a format string bug vulnerability exists in InterpretImageFilename function where user input is directly passed to FormatLocaleStrin
- CVE-2025-55212Aug 26, 2025affected < 7.1.2.0-160000.4.1fixed 7.1.2.0-160000.4.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2, passing a geometry string containing only a colon (":") to montage -geometry leads GetGeometry() to set width/height to 0. Later, ThumbnailImage
Page 2 of 2