rpm package
suse/ImageMagick&distro=SUSE Linux Enterprise Server for SAP applications 16.0
pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0
Vulnerabilities (29)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-31853 | — | < 7.1.2.0-160000.7.1 | 7.1.2.0-160000.7.1 | Mar 11, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-16 and 6.9.13-41, an overflow on 32-bit systems can cause a crash in the SFW decoder when processing extremely large images. This vulnerability is fixed in 7.1.2-16 and 6 | ||
| CVE-2026-30937 | — | < 7.1.2.0-160000.7.1 | 7.1.2.0-160000.7.1 | Mar 9, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a 32-bit unsigned integer overflow in the XWD (X Windows) encoder can cause an undersized heap buffer allocation. When writing a extremely larg | ||
| CVE-2026-30936 | — | < 7.1.2.0-160000.7.1 | 7.1.2.0-160000.7.1 | Mar 9, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a crafted image could cause an out of bounds heap write inside the WaveletDenoiseImage method. When processing a crafted image with the -wavele | ||
| CVE-2026-30935 | — | < 7.1.2.0-160000.7.1 | 7.1.2.0-160000.7.1 | Mar 9, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, BilateralBlurImage contains a heap buffer over-read caused by an incorrect conversion. When processing a crafted image with the -bilateral-blur operation an | ||
| CVE-2026-30931 | — | < 7.1.2.0-160000.7.1 | 7.1.2.0-160000.7.1 | Mar 9, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, a heap-based buffer overflow in the UHDR encoder can happen due to truncation of a value and it would allow an out of bounds write. This vulnerability is fix | ||
| CVE-2026-30929 | — | < 7.1.2.0-160000.7.1 | 7.1.2.0-160000.7.1 | Mar 9, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, MagnifyImage uses a fixed-size stack buffer. When using a specific image it is possible to overflow this buffer and corrupt the stack. This vul | ||
| CVE-2026-30883 | — | < 7.1.2.0-160000.7.1 | 7.1.2.0-160000.7.1 | Mar 9, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an extremely large image profile could result in a heap overflow when encoding a PNG image. This vulnerability is fixed in 7.1.2-16 and 6.9.13- | ||
| CVE-2026-28693 | — | < 7.1.2.0-160000.7.1 | 7.1.2.0-160000.7.1 | Mar 9, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an integer overflow in DIB coder can result in out of bounds read or write. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41. | ||
| CVE-2026-28692 | — | < 7.1.2.0-160000.7.1 | 7.1.2.0-160000.7.1 | Mar 9, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, MAT decoder uses 32-bit arithmetic due to incorrect parenthesization resulting in a heap over-read. This vulnerability is fixed in 7.1.2-16 and | ||
| CVE-2026-28691 | — | < 7.1.2.0-160000.7.1 | 7.1.2.0-160000.7.1 | Mar 9, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an uninitialized pointer dereference vulnerability exists in the JBIG decoder due to a missing check. This vulnerability is fixed in 7.1.2-16 a | ||
| CVE-2026-28690 | — | < 7.1.2.0-160000.7.1 | 7.1.2.0-160000.7.1 | Mar 9, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow vulnerability exists in the MNG encoder. There is a bounds checks missing that could corrupting the stack with attacker | ||
| CVE-2026-28689 | — | < 7.1.2.0-160000.7.1 | 7.1.2.0-160000.7.1 | Mar 9, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, domain="path" authorization is checked before final file open/use. A symlink swap between check-time and use-time bypasses policy-denied read/w | ||
| CVE-2026-28688 | — | < 7.1.2.0-160000.7.1 | 7.1.2.0-160000.7.1 | Mar 9, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap-use-after-free vulnerability exists in the MSL encoder, where a cloned image is destroyed twice. The MSL coder does not support writing | ||
| CVE-2026-28687 | — | < 7.1.2.0-160000.7.1 | 7.1.2.0-160000.7.1 | Mar 9, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap use-after-free vulnerability in ImageMagick's MSL decoder allows an attacker to trigger access to freed memory by crafting an MSL file. | ||
| CVE-2026-28686 | — | < 7.1.2.0-160000.7.1 | 7.1.2.0-160000.7.1 | Mar 9, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, A heap-buffer-overflow vulnerability exists in the PCL encode due to an undersized output buffer allocation. This vulnerability is fixed in 7.1 | ||
| CVE-2026-28494 | — | < 7.1.2.0-160000.7.1 | 7.1.2.0-160000.7.1 | Mar 9, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow exists in ImageMagick's morphology kernel parsing functions. User-controlled kernel strings exceeding a buffer are copi | ||
| CVE-2026-28493 | — | < 7.1.2.0-160000.7.1 | 7.1.2.0-160000.7.1 | Mar 9, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, an integer overflow vulnerability exists in the SIXEL decoer. The vulnerability allows an attacker to perform an out of bounds via a specially crafted image. | ||
| CVE-2026-24484 | — | < 7.1.2.0-160000.7.1 | 7.1.2.0-160000.7.1 | Feb 24, 2026 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, Magick fails to check for multi-layer nested mvg conversions to svg, leading to DoS. Versions 7.1.2-15 and 6.9.13-40 contain a patch. | ||
| CVE-2025-69204 | — | < 7.1.2.0-160000.5.1 | 7.1.2.0-160000.5.1 | Dec 30, 2025 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, in the WriteSVGImage function, using an int variable to store number_attributes caused an integer overflow. This, in turn, triggered a buffer overflow and cau | ||
| CVE-2025-68950 | — | < 7.1.2.0-160000.5.1 | 7.1.2.0-160000.5.1 | Dec 30, 2025 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, Magick fails to check for circular references between two MVGs, leading to a stack overflow. This is a DoS vulnerability, and any situation that allows readin |
- CVE-2026-31853Mar 11, 2026affected < 7.1.2.0-160000.7.1fixed 7.1.2.0-160000.7.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-16 and 6.9.13-41, an overflow on 32-bit systems can cause a crash in the SFW decoder when processing extremely large images. This vulnerability is fixed in 7.1.2-16 and 6
- CVE-2026-30937Mar 9, 2026affected < 7.1.2.0-160000.7.1fixed 7.1.2.0-160000.7.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a 32-bit unsigned integer overflow in the XWD (X Windows) encoder can cause an undersized heap buffer allocation. When writing a extremely larg
- CVE-2026-30936Mar 9, 2026affected < 7.1.2.0-160000.7.1fixed 7.1.2.0-160000.7.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a crafted image could cause an out of bounds heap write inside the WaveletDenoiseImage method. When processing a crafted image with the -wavele
- CVE-2026-30935Mar 9, 2026affected < 7.1.2.0-160000.7.1fixed 7.1.2.0-160000.7.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, BilateralBlurImage contains a heap buffer over-read caused by an incorrect conversion. When processing a crafted image with the -bilateral-blur operation an
- CVE-2026-30931Mar 9, 2026affected < 7.1.2.0-160000.7.1fixed 7.1.2.0-160000.7.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, a heap-based buffer overflow in the UHDR encoder can happen due to truncation of a value and it would allow an out of bounds write. This vulnerability is fix
- CVE-2026-30929Mar 9, 2026affected < 7.1.2.0-160000.7.1fixed 7.1.2.0-160000.7.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, MagnifyImage uses a fixed-size stack buffer. When using a specific image it is possible to overflow this buffer and corrupt the stack. This vul
- CVE-2026-30883Mar 9, 2026affected < 7.1.2.0-160000.7.1fixed 7.1.2.0-160000.7.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an extremely large image profile could result in a heap overflow when encoding a PNG image. This vulnerability is fixed in 7.1.2-16 and 6.9.13-
- CVE-2026-28693Mar 9, 2026affected < 7.1.2.0-160000.7.1fixed 7.1.2.0-160000.7.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an integer overflow in DIB coder can result in out of bounds read or write. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.
- CVE-2026-28692Mar 9, 2026affected < 7.1.2.0-160000.7.1fixed 7.1.2.0-160000.7.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, MAT decoder uses 32-bit arithmetic due to incorrect parenthesization resulting in a heap over-read. This vulnerability is fixed in 7.1.2-16 and
- CVE-2026-28691Mar 9, 2026affected < 7.1.2.0-160000.7.1fixed 7.1.2.0-160000.7.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an uninitialized pointer dereference vulnerability exists in the JBIG decoder due to a missing check. This vulnerability is fixed in 7.1.2-16 a
- CVE-2026-28690Mar 9, 2026affected < 7.1.2.0-160000.7.1fixed 7.1.2.0-160000.7.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow vulnerability exists in the MNG encoder. There is a bounds checks missing that could corrupting the stack with attacker
- CVE-2026-28689Mar 9, 2026affected < 7.1.2.0-160000.7.1fixed 7.1.2.0-160000.7.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, domain="path" authorization is checked before final file open/use. A symlink swap between check-time and use-time bypasses policy-denied read/w
- CVE-2026-28688Mar 9, 2026affected < 7.1.2.0-160000.7.1fixed 7.1.2.0-160000.7.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap-use-after-free vulnerability exists in the MSL encoder, where a cloned image is destroyed twice. The MSL coder does not support writing
- CVE-2026-28687Mar 9, 2026affected < 7.1.2.0-160000.7.1fixed 7.1.2.0-160000.7.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap use-after-free vulnerability in ImageMagick's MSL decoder allows an attacker to trigger access to freed memory by crafting an MSL file.
- CVE-2026-28686Mar 9, 2026affected < 7.1.2.0-160000.7.1fixed 7.1.2.0-160000.7.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, A heap-buffer-overflow vulnerability exists in the PCL encode due to an undersized output buffer allocation. This vulnerability is fixed in 7.1
- CVE-2026-28494Mar 9, 2026affected < 7.1.2.0-160000.7.1fixed 7.1.2.0-160000.7.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow exists in ImageMagick's morphology kernel parsing functions. User-controlled kernel strings exceeding a buffer are copi
- CVE-2026-28493Mar 9, 2026affected < 7.1.2.0-160000.7.1fixed 7.1.2.0-160000.7.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, an integer overflow vulnerability exists in the SIXEL decoer. The vulnerability allows an attacker to perform an out of bounds via a specially crafted image.
- CVE-2026-24484Feb 24, 2026affected < 7.1.2.0-160000.7.1fixed 7.1.2.0-160000.7.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, Magick fails to check for multi-layer nested mvg conversions to svg, leading to DoS. Versions 7.1.2-15 and 6.9.13-40 contain a patch.
- CVE-2025-69204Dec 30, 2025affected < 7.1.2.0-160000.5.1fixed 7.1.2.0-160000.5.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, in the WriteSVGImage function, using an int variable to store number_attributes caused an integer overflow. This, in turn, triggered a buffer overflow and cau
- CVE-2025-68950Dec 30, 2025affected < 7.1.2.0-160000.5.1fixed 7.1.2.0-160000.5.1
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, Magick fails to check for circular references between two MVGs, leading to a stack overflow. This is a DoS vulnerability, and any situation that allows readin
Page 1 of 2