Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-30936 (GCVE-0-2026-30936)
Vulnerability from cvelistv5 – Published: 2026-03-09 21:49 – Updated: 2026-03-10 14:48
VLAI?
EPSS
Title
ImageMagick has a heap Buffer Overflow in WaveletDenoiseImage
Summary
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a crafted image could cause an out of bounds heap write inside the WaveletDenoiseImage method. When processing a crafted image with the -wavelet-denoise operation an out of bounds write can occur. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.
Severity ?
5.5 (Medium)
CWE
- CWE-122 - Heap-based Buffer Overflow
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| ImageMagick | ImageMagick |
Affected:
>= 7.0.0, < 7.1.2-16
Affected: < 6.9.13-41 |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-30936",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-03-10T14:48:08.605845Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-03-10T14:48:27.131Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "ImageMagick",
"vendor": "ImageMagick",
"versions": [
{
"status": "affected",
"version": "\u003e= 7.0.0, \u003c 7.1.2-16"
},
{
"status": "affected",
"version": "\u003c 6.9.13-41"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a crafted image could cause an out of bounds heap write inside the WaveletDenoiseImage method. When processing a crafted image with the -wavelet-denoise operation an out of bounds write can occur. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-122",
"description": "CWE-122: Heap-based Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-03-09T21:49:36.015Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-5ggv-92r5-cp4p",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-5ggv-92r5-cp4p"
}
],
"source": {
"advisory": "GHSA-5ggv-92r5-cp4p",
"discovery": "UNKNOWN"
},
"title": "ImageMagick has a heap Buffer Overflow in WaveletDenoiseImage"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2026-30936",
"datePublished": "2026-03-09T21:49:36.015Z",
"dateReserved": "2026-03-07T16:40:05.885Z",
"dateUpdated": "2026-03-10T14:48:27.131Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2026-30936\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2026-03-10T07:44:57.663\",\"lastModified\":\"2026-03-11T17:48:46.670\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a crafted image could cause an out of bounds heap write inside the WaveletDenoiseImage method. When processing a crafted image with the -wavelet-denoise operation an out of bounds write can occur. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.\"},{\"lang\":\"es\",\"value\":\"ImageMagick es un software libre y de c\u00f3digo abierto utilizado para editar y manipular im\u00e1genes digitales. Antes de las versiones 7.1.2-16 y 6.9.13-41, una imagen manipulada podr\u00eda causar una escritura fuera de l\u00edmites en el heap dentro del m\u00e9todo WaveletDenoiseImage. Al procesar una imagen manipulada con la operaci\u00f3n -wavelet-denoise, puede ocurrir una escritura fuera de l\u00edmites. Esta vulnerabilidad est\u00e1 corregida en 7.1.2-16 y 6.9.13-41.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-122\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.9.13-41\",\"matchCriteriaId\":\"EFFB7C48-4211-4215-9C0B-D285B8E09CF1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"7.0.0-0\",\"versionEndExcluding\":\"7.1.2-16\",\"matchCriteriaId\":\"865783BD-5A33-4D05-AF99-E6EFE76414D1\"}]}]}],\"references\":[{\"url\":\"https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-5ggv-92r5-cp4p\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-30936\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-03-10T14:48:08.605845Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-03-10T14:48:18.670Z\"}}], \"cna\": {\"title\": \"ImageMagick has a heap Buffer Overflow in WaveletDenoiseImage\", \"source\": {\"advisory\": \"GHSA-5ggv-92r5-cp4p\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.5, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"ImageMagick\", \"product\": \"ImageMagick\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003e= 7.0.0, \u003c 7.1.2-16\"}, {\"status\": \"affected\", \"version\": \"\u003c 6.9.13-41\"}]}], \"references\": [{\"url\": \"https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-5ggv-92r5-cp4p\", \"name\": \"https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-5ggv-92r5-cp4p\", \"tags\": [\"x_refsource_CONFIRM\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a crafted image could cause an out of bounds heap write inside the WaveletDenoiseImage method. When processing a crafted image with the -wavelet-denoise operation an out of bounds write can occur. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-122\", \"description\": \"CWE-122: Heap-based Buffer Overflow\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2026-03-09T21:49:36.015Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-30936\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-03-10T14:48:27.131Z\", \"dateReserved\": \"2026-03-07T16:40:05.885Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2026-03-09T21:49:36.015Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
GHSA-5GGV-92R5-CP4P
Vulnerability from github – Published: 2026-03-12 14:16 – Updated: 2026-03-12 14:16
VLAI?
Summary
ImageMagick has Heap Buffer Overflow in WaveletDenoiseImage
Details
A crafted image could cause an out of bounds heap write inside the WaveletDenoiseImage method. When processing a crafted image with the -wavelet-denoise operation an out of bounds write can occur.
=================================================================
==661320==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x503000002754 at pc 0x5ff45f82c92a bp 0x7fffb732b400 sp 0x7fffb732b3f0
WRITE of size 4 at 0x503000002754 thread T0
Severity ?
5.5 (Medium)
{
"affected": [
{
"package": {
"ecosystem": "NuGet",
"name": "Magick.NET-Q16-AnyCPU"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "14.10.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Magick.NET-Q16-HDRI-AnyCPU"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "14.10.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Magick.NET-Q16-HDRI-OpenMP-arm64"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "14.10.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Magick.NET-Q16-HDRI-arm64"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "14.10.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Magick.NET-Q16-HDRI-x64"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "14.10.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Magick.NET-Q16-HDRI-x86"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "14.10.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Magick.NET-Q16-OpenMP-arm64"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "14.10.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Magick.NET-Q16-OpenMP-x64"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "14.10.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Magick.NET-Q16-OpenMP-x86"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "14.10.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Magick.NET-Q16-arm64"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "14.10.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Magick.NET-Q16-x64"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "14.10.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Magick.NET-Q16-x86"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "14.10.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Magick.NET-Q16-HDRI-OpenMP-x64"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "14.10.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Magick.NET-Q8-AnyCPU"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "14.10.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Magick.NET-Q8-OpenMP-arm64"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "14.10.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Magick.NET-Q8-OpenMP-x64"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "14.10.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Magick.NET-Q8-arm64"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "14.10.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Magick.NET-Q8-x64"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "14.10.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "NuGet",
"name": "Magick.NET-Q8-x86"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "14.10.4"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2026-30936"
],
"database_specific": {
"cwe_ids": [
"CWE-122"
],
"github_reviewed": true,
"github_reviewed_at": "2026-03-12T14:16:33Z",
"nvd_published_at": "2026-03-10T07:44:57Z",
"severity": "MODERATE"
},
"details": "A crafted image could cause an out of bounds heap write inside the WaveletDenoiseImage method. When processing a crafted image with the -wavelet-denoise operation an out of bounds write can occur.\n\n```\n=================================================================\n==661320==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x503000002754 at pc 0x5ff45f82c92a bp 0x7fffb732b400 sp 0x7fffb732b3f0\nWRITE of size 4 at 0x503000002754 thread T0\n```",
"id": "GHSA-5ggv-92r5-cp4p",
"modified": "2026-03-12T14:16:33Z",
"published": "2026-03-12T14:16:33Z",
"references": [
{
"type": "WEB",
"url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-5ggv-92r5-cp4p"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-30936"
},
{
"type": "PACKAGE",
"url": "https://github.com/ImageMagick/ImageMagick"
},
{
"type": "WEB",
"url": "https://github.com/dlemstra/Magick.NET/releases/tag/14.10.4"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
],
"summary": "ImageMagick has Heap Buffer Overflow in WaveletDenoiseImage"
}
FKIE_CVE-2026-30936
Vulnerability from fkie_nvd - Published: 2026-03-10 07:44 - Updated: 2026-03-11 17:48
Severity ?
Summary
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a crafted image could cause an out of bounds heap write inside the WaveletDenoiseImage method. When processing a crafted image with the -wavelet-denoise operation an out of bounds write can occur. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| imagemagick | imagemagick | * | |
| imagemagick | imagemagick | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*",
"matchCriteriaId": "EFFB7C48-4211-4215-9C0B-D285B8E09CF1",
"versionEndExcluding": "6.9.13-41",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*",
"matchCriteriaId": "865783BD-5A33-4D05-AF99-E6EFE76414D1",
"versionEndExcluding": "7.1.2-16",
"versionStartIncluding": "7.0.0-0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a crafted image could cause an out of bounds heap write inside the WaveletDenoiseImage method. When processing a crafted image with the -wavelet-denoise operation an out of bounds write can occur. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41."
},
{
"lang": "es",
"value": "ImageMagick es un software libre y de c\u00f3digo abierto utilizado para editar y manipular im\u00e1genes digitales. Antes de las versiones 7.1.2-16 y 6.9.13-41, una imagen manipulada podr\u00eda causar una escritura fuera de l\u00edmites en el heap dentro del m\u00e9todo WaveletDenoiseImage. Al procesar una imagen manipulada con la operaci\u00f3n -wavelet-denoise, puede ocurrir una escritura fuera de l\u00edmites. Esta vulnerabilidad est\u00e1 corregida en 7.1.2-16 y 6.9.13-41."
}
],
"id": "CVE-2026-30936",
"lastModified": "2026-03-11T17:48:46.670",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6,
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
},
"published": "2026-03-10T07:44:57.663",
"references": [
{
"source": "security-advisories@github.com",
"tags": [
"Vendor Advisory"
],
"url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-5ggv-92r5-cp4p"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-122"
}
],
"source": "security-advisories@github.com",
"type": "Primary"
}
]
}
VDE-2026-021
Vulnerability from csaf_wagogmbhcokg - Published: 2026-03-30 07:00 - Updated: 2026-03-30 07:00Summary
WAGO: Multiple Vulnerabilities in WAGO VC Hub
Severity
Critical
Notes
Summary: The VC Hub incorporates the Magick.NET‑Q16‑AnyCPU component, derived from ImageMagick, to process user‑uploaded images and generate thumbnails within the projects image library. Only authenticated users with the Design Project Permission can upload images.
Impact: The identified vulnerabilities may expose the system to risks including memory leaks, denial‑of‑service conditions, injection vectors, and potential remote code execution.
Remediation: Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap information disclosure vulnerability exists in ImageMagick's PSD (Adobe Photoshop) format handler. When processing a maliciously crafted PSD file containing ZIP-compressed layer data that decompresses to less than the expected size, uninitialized heap memory is leaked into the output image. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
7.5 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, Magick fails to check for multi-layer nested mvg conversions to svg, leading to DoS. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
5.3 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, when a PCD file does not contain a valid Sync marker, the DecodeImage() function becomes trapped in an infinite loop while searching for the Sync marker, causing the program to become unresponsive and continuously consume CPU resources, ultimately leading to system resource exhaustion and denial of service. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
7.5 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in multiple raw image format handles. The vulnerability occurs when processing images with -extract dimensions larger than -size dimensions, causing out-of-bounds memory reads from a heap-allocated buffer. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
5.1 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-15, a memory leak in the ASHLAR image writer allows an attacker to exhaust process memory by providing a crafted image that results in small objects that are allocated but never freed. Version 7.1.2-15 contains a patch.
5.3 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, memory leak exists in `coders/msl.c`. In the `WriteMSLImage` function of the `msl.c` file, resources are allocated. But the function returns early without releasing these allocated resources. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
5.3 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. `WriteUHDRImage` in `coders/uhdr.c` uses `int` arithmetic to compute the pixel buffer size. Prior to version 7.1.2-15, when image dimensions are large, the multiplication overflows 32-bit `int`, causing an undersized heap allocation followed by an out-of-bounds write. This can crash the process or potentially lead to an out of bounds heap write. Version 7.1.2-15 contains a patch.
8.2 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, in `ReadSFWImage()` (`coders/sfw.c`), when temporary file creation fails, `read_info` is destroyed before its `filename` member is accessed, causing a NULL pointer dereference and crash. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
7.5 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, in `ReadSTEGANOImage()` (`coders/stegano.c`), the `watermark` Image object is not freed on three early-return paths, resulting in a definite memory leak (~13.5KB+ per invocation) that can be exploited for denial of service. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
7.5 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the ps coders, responsible for writing PostScript files, fails to sanitize the input before writing it into the PostScript header. An attacker can provide a malicious file and inject arbitrary PostScript code. When the resulting file is processed by a printer or a viewer (like Ghostscript), the injected code is interpreted and executed. The html encoder does not properly escape strings that are written to in the html document. An attacker can provide a malicious file and injection arbitrary html code. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
5.3 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a NULL pointer dereference in ClonePixelCacheRepository allows a remote attacker to crash any application linked against ImageMagick by supplying a crafted image file, resulting in denial of service. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
7.5 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a logic error in YUV sampling factor validation allows an invalid sampling factor to bypass checks and trigger a division-by-zero during image loading, resulting in a reliable denial-of-service. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
7.5 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, an Integer Overflow vulnerability exists in the sun decoder. On 32-bit systems/builds, a carefully crafted image can lead to an out of bounds heap write. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
9.8 (Critical)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the UIL and XPM image encoder do not validate the pixel index value returned by `GetPixelIndex()` before using it as an array subscript. In HDRI builds, `Quantum` is a floating-point type, so pixel index values can be negative. An attacker can craft an image with negative pixel index values to trigger a global buffer overflow read during conversion, leading to information disclosure or a process crash. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
9.1 (Critical)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, ImageMagick’s path security policy is enforced on the raw filename string before the filesystem resolves it. As a result, a policy rule such as /etc/* can be bypassed by a path traversal. The OS resolves the traversal and opens the sensitive file, but the policy matcher only sees the unnormalized path and therefore allows the read. This enables local file disclosure (LFI) even when policy-secure.xml is applied. Actions to prevent reading from files have been taken in versions .7.1.2-15 and 6.9.13-40 But it make sure writing is also not possible the following should be added to one's policy. This will also be included in ImageMagick's more secure policies by default.
7.5 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. The shipped "secure" security policy includes a rule intended to prevent reading/writing from standard streams. However, ImageMagick also supports fd:<n> pseudo-filenames (e.g., fd:0, fd:1). Prior to versions 7.1.2-15 and 6.9.13-40, this path form is not blocked by the secure policy templates, and therefore bypasses the protection goal of "no stdin/stdout." Versions 7.1.2-15 and 6.9.13-40 contains a patch by including a change to the more secure policies by default. As a workaround, add the change to one's security policy manually.
7.8 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-15, a stack-based buffer overflow exists in the ImageMagick FTXT image reader. A crafted FTXT file can cause out-of-bounds writes on the stack, leading to a crash. Version 7.1.2-15 contains a patch.
7.5 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-15, a memory leak exists in `coders/ashlar.c`. The `WriteASHLARImage` allocates a structure. However, when an exception is thrown, the allocated memory is not properly released, resulting in a potential memory leak. Version 7.1.2-15 contains a patch.
7.5 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted MSL script triggers a heap-use-after-free. The operation element handler replaces and frees the image while the parser continues reading from it, leading to a UAF in ReadBlobString during further parsing. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
9.8 (Critical)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted SVG file containing an malicious element causes ImageMagick to attempt to allocate ~674 GB of memory, leading to an out-of-memory abort. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
7.5 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in the MAP image decoder when processing crafted MAP files, potentially leading to crashes or unintended memory disclosure during image decoding. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
9.1 (Critical)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, sometimes msl.c fails to update the stack index, so an image is stored in the wrong slot and never freed on error, causing leaks. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
7.5 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted SVG file can cause a denial of service. An off-by-one boundary check (`>` instead of `>=`) that allows bypass the guard and reach an undefined `(size_t)` cast. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
7.5 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted profile contain invalid IPTC data may cause an infinite loop when writing it with `IPTCTEXT`. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
7.5 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a `continue` statement in the JPEG extent binary search loop in the jpeg encoder causes an infinite loop when writing persistently fails. An attacker can trigger a 100% CPU consumption and process hang (Denial of Service) with a crafted image. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
7.5 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the MSL interpreter crashes when processing an invalid `<map>` element that causes it to use an image after it has been freed. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
5.3 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability occurs when processing an image with small dimension using the `-wavelet-denoise` operator. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
4 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in the DJVU image format handler. The vulnerability occurs due to integer truncation when calculating the stride (row size) for pixel buffer allocation. The stride calculation overflows a 32-bit signed integer, resulting in an out-of-bounds memory reads. Versions 7.1.2-15 and 6.9.13-40 contains a patch.
4 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, MAT decoder uses 32-bit arithmetic due to incorrect parenthesization resulting in a heap over-read. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.
4.8 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-16 and 6.9.13-41, an overflow on 32-bit systems can cause a crash in the SFW decoder when processing extremely large images. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.
5.7 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an extremely large image profile could result in a heap overflow when encoding a PNG image. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.
5.7 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, domain="path" authorization is checked before final file open/use. A symlink swap between check-time and use-time bypasses policy-denied read/write. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.
6.3 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, an integer overflow vulnerability exists in the SIXEL decoder. The vulnerability allows an attacker to perform an out of bounds via a specially crafted image. This vulnerability is fixed in 7.1.2-16.
6.5 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, A heap-buffer-overflow vulnerability exists in the PCL encode due to an undersized output buffer allocation. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.
6.8 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap-use-after-free vulnerability exists in the MSL encoder, where a cloned image is destroyed twice. The MSL coder does not support writing MSL so the write capability has been removed. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.
5.3 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, MagnifyImage uses a fixed-size stack buffer. When using a specific image it is possible to overflow this buffer and corrupt the stack. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.
7.7 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an uninitialized pointer dereference vulnerability exists in the JBIG decoder due to a missing check. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.
7.5 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, a heap-based buffer overflow in the UHDR encoder can happen due to truncation of a value and it would allow an out of bounds write. This vulnerability is fixed in 7.1.2-16.
6.8 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a crafted image could cause an out of bounds heap write inside the WaveletDenoiseImage method. When processing a crafted image with the -wavelet-denoise operation an out of bounds write can occur. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.
5.5 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a 32-bit unsigned integer overflow in the XWD (X Windows) encoder can cause an undersized heap buffer allocation. When writing a extremely large image an out of bounds heap write can occur. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.
6.8 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap use-after-free vulnerability in ImageMagick's MSL decoder allows an attacker to trigger access to freed memory by crafting an MSL file. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.
5.3 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow vulnerability exists in the MNG encoder. There is a bounds checks missing that could corrupting the stack with attacker-controlled data. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.
6.5 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an integer overflow in DIB coder can result in out of bounds read or write. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.
8.1 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, BilateralBlurImage contains a heap buffer over-read caused by an incorrect conversion. When processing a crafted image with the -bilateral-blur operation an out of bounds read can occur. This vulnerability is fixed in 7.1.2-16.
4.4 (Medium)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow exists in ImageMagick's morphology kernel parsing functions. User-controlled kernel strings exceeding a buffer are copied into fixed-size stack buffers via memcpy without bounds checking, resulting in stack corruption. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.
7.1 (High)
Vendor Fix
Update the WAGO Visualization And Control Hub to version 5.0.1.
References
Acknowledgments
CERTVDE
certvde.com
{
"document": {
"acknowledgments": [
{
"organization": "CERTVDE",
"summary": "coordination",
"urls": [
"https://certvde.com"
]
}
],
"aggregate_severity": {
"namespace": "https://www.first.org/cvss/v3.1/specification-document#Qualitative-Severity-Rating-Scale",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-GB",
"notes": [
{
"category": "summary",
"text": "The VC Hub incorporates the Magick.NET\u2011Q16\u2011AnyCPU component, derived from ImageMagick, to process user\u2011uploaded images and generate thumbnails within the projects image library. Only authenticated users with the Design Project Permission can upload images.",
"title": "Summary"
},
{
"category": "description",
"text": "The identified vulnerabilities may expose the system to risks including memory leaks, denial\u2011of\u2011service conditions, injection vectors, and potential remote code execution.",
"title": "Impact"
},
{
"category": "description",
"text": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"title": "Remediation"
}
],
"publisher": {
"category": "vendor",
"contact_details": "psirt@wago.com",
"name": "WAGO GmbH \u0026 Co. KG",
"namespace": "https://www.wago.com/psirt"
},
"references": [
{
"category": "self",
"summary": "WAGO PSIRT",
"url": "https://www.wago.com/de-en/automation-technology/psirt"
},
{
"category": "external",
"summary": "CERT@VDE Security Advisories for WAGO",
"url": "https://certvde.com/de/advisories/vendor/wago/"
},
{
"category": "self",
"summary": "VDE-2026-021: WAGO: Multiple Vulnerabilities in WAGO VC Hub - HTML",
"url": "https://certvde.com/en/advisories/VDE-2026-021"
},
{
"category": "self",
"summary": "VDE-2026-021: WAGO: Multiple Vulnerabilities in WAGO VC Hub - CSAF",
"url": "https://wago.csaf-tp.certvde.com/.well-known/csaf/white/2026/vde-2026-021.json"
}
],
"title": "WAGO: Multiple Vulnerabilities in WAGO VC Hub",
"tracking": {
"aliases": [
"VDE-2026-021"
],
"current_release_date": "2026-03-30T07:00:00.000Z",
"generator": {
"date": "2026-03-26T10:18:57.891Z",
"engine": {
"name": "Secvisogram",
"version": "2.5.44"
}
},
"id": "VDE-2026-021",
"initial_release_date": "2026-03-30T07:00:00.000Z",
"revision_history": [
{
"date": "2026-03-30T07:00:00.000Z",
"number": "1.0.0",
"summary": "Initial release."
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:generic/\u003c5.0.1",
"product": {
"name": "Visualization And Control Hub \u003c 5.0.1",
"product_id": "CSAFPID-21001"
}
},
{
"category": "product_version",
"name": "5.0.1",
"product": {
"name": "Visualization And Control Hub 5.0.1",
"product_id": "CSAFPID-22001",
"product_identification_helper": {
"cpe": "cpe:2.3:o:wago:visualization_and_control_hub:5.0.1:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_version",
"name": "5.0.0",
"product": {
"name": "Visualization And Control Hub 5.0.0",
"product_id": "CSAFPID-21002",
"product_identification_helper": {
"cpe": "cpe:2.3:o:wago:visualization_and_control_hub:5.0.0:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_name",
"name": "Visualization And Control Hub"
}
],
"category": "product_name",
"name": "Software"
}
],
"category": "vendor",
"name": "WAGO"
}
],
"product_groups": [
{
"group_id": "CSAFGID-0001",
"product_ids": [
"CSAFPID-21001",
"CSAFPID-21002"
],
"summary": "Affected products"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-24481",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap information disclosure vulnerability exists in ImageMagick\u0027s PSD (Adobe Photoshop) format handler. When processing a maliciously crafted PSD file containing ZIP-compressed layer data that decompresses to less than the expected size, uninitialized heap memory is leaked into the output image. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has Possible Heap Information Disclosure in PSD ZIP Decompression"
},
{
"cve": "CVE-2026-24484",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, Magick fails to check for multi-layer nested mvg conversions to svg, leading to DoS. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick: Converting multi-layer nested MVG to SVG can cause DoS"
},
{
"cve": "CVE-2026-24485",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, when a PCD file does not contain a valid Sync marker, the DecodeImage() function becomes trapped in an infinite loop while searching for the Sync marker, causing the program to become unresponsive and continuously consume CPU resources, ultimately leading to system resource exhaustion and denial of service. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick: Infinite loop vulnerability when parsing a PCD file"
},
{
"cve": "CVE-2026-25576",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in multiple raw image format handles. The vulnerability occurs when processing images with -extract dimensions larger than -size dimensions, causing out-of-bounds memory reads from a heap-allocated buffer. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"environmentalScore": 5.1,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.1,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick: Out of bounds read in multiple coders read raw pixel data"
},
{
"cve": "CVE-2026-25637",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-15, a memory leak in the ASHLAR image writer allows an attacker to exhaust process memory by providing a crafted image that results in small objects that are allocated but never freed. Version 7.1.2-15 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick: Possible memory leak in ASHLAR encoder"
},
{
"cve": "CVE-2026-25638",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, memory leak exists in `coders/msl.c`. In the `WriteMSLImage` function of the `msl.c` file, resources are allocated. But the function returns early without releasing these allocated resources. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has memory leak in msl encoder"
},
{
"cve": "CVE-2026-25794",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. `WriteUHDRImage` in `coders/uhdr.c` uses `int` arithmetic to compute the pixel buffer size. Prior to version 7.1.2-15, when image dimensions are large, the multiplication overflows 32-bit `int`, causing an undersized heap allocation followed by an out-of-bounds write. This can crash the process or potentially lead to an out of bounds heap write. Version 7.1.2-15 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"environmentalScore": 8.2,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 8.2,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has heap-buffer-overflow via signed integer overflow in `WriteUHDRImage` when writing UHDR images with large dimensions"
},
{
"cve": "CVE-2026-25795",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, in `ReadSFWImage()` (`coders/sfw.c`), when temporary file creation fails, `read_info` is destroyed before its `filename` member is accessed, causing a NULL pointer dereference and crash. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has NULL pointer dereference in ReadSFWImage after DestroyImageInfo (sfw.c)"
},
{
"cve": "CVE-2026-25796",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, in `ReadSTEGANOImage()` (`coders/stegano.c`), the `watermark` Image object is not freed on three early-return paths, resulting in a definite memory leak (~13.5KB+ per invocation) that can be exploited for denial of service. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has memory leak of watermark Image object in ReadSTEGANOImage on multiple error/early-return paths"
},
{
"cve": "CVE-2026-25797",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the ps coders, responsible for writing PostScript files, fails to sanitize the input before writing it into the PostScript header. An attacker can provide a malicious file and inject arbitrary PostScript code. When the resulting file is processed by a printer or a viewer (like Ghostscript), the injected code is interpreted and executed. The html encoder does not properly escape strings that are written to in the html document. An attacker can provide a malicious file and injection arbitrary html code. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick vulnerable to Code injection via PostScript header in ps coders"
},
{
"cve": "CVE-2026-25798",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a NULL pointer dereference in ClonePixelCacheRepository allows a remote attacker to crash any application linked against ImageMagick by supplying a crafted image file, resulting in denial of service. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has NULL Pointer Dereference in ClonePixelCacheRepository via crafted image"
},
{
"cve": "CVE-2026-25799",
"cwe": {
"id": "CWE-369",
"name": "Divide By Zero"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a logic error in YUV sampling factor validation allows an invalid sampling factor to bypass checks and trigger a division-by-zero during image loading, resulting in a reliable denial-of-service. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has Division-by-Zero in YUV sampling factor validation, which leads to crash"
},
{
"cve": "CVE-2026-25897",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, an Integer Overflow vulnerability exists in the sun decoder. On 32-bit systems/builds, a carefully crafted image can lead to an out of bounds heap write. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has heap overflow in sun decoder on 32-bit systems that can result in out of bounds write"
},
{
"cve": "CVE-2026-25898",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the UIL and XPM image encoder do not validate the pixel index value returned by `GetPixelIndex()` before using it as an array subscript. In HDRI builds, `Quantum` is a floating-point type, so pixel index values can be negative. An attacker can craft an image with negative pixel index values to trigger a global buffer overflow read during conversion, leading to information disclosure or a process crash. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.1,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.1,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "Imagemagick Has Global Buffer Overflow (OOB Read) via Negative Pixel Index in UIL and XPM Writer"
},
{
"cve": "CVE-2026-25965",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, ImageMagick\u2019s path security policy is enforced on the raw filename string before the filesystem resolves it. As a result, a policy rule such as /etc/* can be bypassed by a path traversal. The OS resolves the traversal and opens the sensitive file, but the policy matcher only sees the unnormalized path and therefore allows the read. This enables local file disclosure (LFI) even when policy-secure.xml is applied. Actions to prevent reading from files have been taken in versions .7.1.2-15 and 6.9.13-40 But it make sure writing is also not possible the following should be added to one\u0027s policy. This will also be included in ImageMagick\u0027s more secure policies by default.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick\u0027s policy bypass through path traversal allows reading restricted content despite secured policy"
},
{
"cve": "CVE-2026-25966",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. The shipped \"secure\" security policy includes a rule intended to prevent reading/writing from standard streams. However, ImageMagick also supports fd:\u003cn\u003e pseudo-filenames (e.g., fd:0, fd:1). Prior to versions 7.1.2-15 and 6.9.13-40, this path form is not blocked by the secure policy templates, and therefore bypasses the protection goal of \"no stdin/stdout.\" Versions 7.1.2-15 and 6.9.13-40 contains a patch by including a change to the more secure policies by default. As a workaround, add the change to one\u0027s security policy manually.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 7.8,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 7.8,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick\u0027s Security Policy Bypass through config/policy-secure.xml via \"fd handler\" leads to stdin/stdout access"
},
{
"cve": "CVE-2026-25967",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-15, a stack-based buffer overflow exists in the ImageMagick FTXT image reader. A crafted FTXT file can cause out-of-bounds writes on the stack, leading to a crash. Version 7.1.2-15 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has stack buffer overflow in FTXT reader via oversized integer field"
},
{
"cve": "CVE-2026-25969",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-15, a memory leak exists in `coders/ashlar.c`. The `WriteASHLARImage` allocates a structure. However, when an exception is thrown, the allocated memory is not properly released, resulting in a potential memory leak. Version 7.1.2-15 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has Memory Leak in coders/ashlar.c"
},
{
"cve": "CVE-2026-25983",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted MSL script triggers a heap-use-after-free. The operation element handler replaces and frees the image while the parser continues reading from it, leading to a UAF in ReadBlobString during further parsing. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.8,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has Use After Free in MSLStartElement in \"coders/msl.c\""
},
{
"cve": "CVE-2026-25985",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted SVG file containing an malicious element causes ImageMagick to attempt to allocate ~674 GB of memory, leading to an out-of-memory abort. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "Memory allocation with excessive without limits in the internal SVG decoder"
},
{
"cve": "CVE-2026-25987",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in the MAP image decoder when processing crafted MAP files, potentially leading to crashes or unintended memory disclosure during image decoding. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalScore": 9.1,
"environmentalSeverity": "CRITICAL",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.1,
"temporalSeverity": "CRITICAL",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has heap buffer over-read in MAP image decoder"
},
{
"cve": "CVE-2026-25988",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, sometimes msl.c fails to update the stack index, so an image is stored in the wrong slot and never freed on error, causing leaks. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick\u0027s MSL image stack index not refreshed, leading to leaked images."
},
{
"cve": "CVE-2026-25989",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted SVG file can cause a denial of service. An off-by-one boundary check (`\u003e` instead of `\u003e=`) that allows bypass the guard and reach an undefined `(size_t)` cast. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has integer overflow or wraparound and incorrect conversion between numeric types in the internal SVG decoder"
},
{
"cve": "CVE-2026-26066",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted profile contain invalid IPTC data may cause an infinite loop when writing it with `IPTCTEXT`. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has infinite loop when writing IPTCTEXT leads to denial of service via crafted profile"
},
{
"cve": "CVE-2026-26283",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a `continue` statement in the JPEG extent binary search loop in the jpeg encoder causes an infinite loop when writing persistently fails. An attacker can trigger a 100% CPU consumption and process hang (Denial of Service) with a crafted image. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has possible infinite loop in JPEG encoder when using `jpeg:extent`"
},
{
"cve": "CVE-2026-26983",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the MSL interpreter crashes when processing an invalid `\u003cmap\u003e` element that causes it to use an image after it has been freed. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick: Invalid MSL \u003cmap\u003e can result in a use after free"
},
{
"cve": "CVE-2026-27798",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability occurs when processing an image with small dimension using the `-wavelet-denoise` operator. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"environmentalScore": 4,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 4,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick: Heap Buffer Over-read in WaveletDenoise when processing small images"
},
{
"cve": "CVE-2026-27799",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in the DJVU image format handler. The vulnerability occurs due to integer truncation when calculating the stride (row size) for pixel buffer allocation. The stride calculation overflows a 32-bit signed integer, resulting in an out-of-bounds memory reads. Versions 7.1.2-15 and 6.9.13-40 contains a patch.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 4,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 4,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has a heap Buffer Over-read in its DJVU image format handler"
},
{
"cve": "CVE-2026-28692",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, MAT decoder uses 32-bit arithmetic due to incorrect parenthesization resulting in a heap over-read. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"environmentalScore": 4.8,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 4.8,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has a heap buffer over-read via 32-bit integer overflow in MAT decoder"
},
{
"cve": "CVE-2026-31853",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-16 and 6.9.13-41, an overflow on 32-bit systems can cause a crash in the SFW decoder when processing extremely large images. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.7,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.7,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has a heap buffer over-write on 32-bit systems in SFW decoder"
},
{
"cve": "CVE-2026-30883",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an extremely large image profile could result in a heap overflow when encoding a PNG image. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.7,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.7,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has a Heap Overflow when writing extremely large image profile in the PNG encoder"
},
{
"cve": "CVE-2026-28689",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, domain=\"path\" authorization is checked before final file open/use. A symlink swap between check-time and use-time bypasses policy-denied read/write. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"environmentalScore": 6.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"temporalScore": 6.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has a Path Policy TOCTOU symlink race bypass"
},
{
"cve": "CVE-2026-28493",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, an integer overflow vulnerability exists in the SIXEL decoder. The vulnerability allows an attacker to perform an out of bounds via a specially crafted image. This vulnerability is fixed in 7.1.2-16.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has a Integer Overflow leading to out of bounds write in SIXEL decoder"
},
{
"cve": "CVE-2026-28686",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, A heap-buffer-overflow vulnerability exists in the PCL encode due to an undersized output buffer allocation. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.8,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 6.8,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has a write heap-buffer-overflow in PCL encoder via undersized output buffer"
},
{
"cve": "CVE-2026-28688",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap-use-after-free vulnerability exists in the MSL encoder, where a cloned image is destroyed twice. The MSL coder does not support writing MSL so the write capability has been removed. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has a heap use-after-free in the MSL encoder"
},
{
"cve": "CVE-2026-30929",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, MagnifyImage uses a fixed-size stack buffer. When using a specific image it is possible to overflow this buffer and corrupt the stack. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.7,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.7,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has a stack buffer overflow in MagnifyImage"
},
{
"cve": "CVE-2026-28691",
"cwe": {
"id": "CWE-252",
"name": "Unchecked Return Value"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an uninitialized pointer dereference vulnerability exists in the JBIG decoder due to a missing check. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has an uninitialized pointer dereference in JBIG decoder"
},
{
"cve": "CVE-2026-30931",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, a heap-based buffer overflow in the UHDR encoder can happen due to truncation of a value and it would allow an out of bounds write. This vulnerability is fixed in 7.1.2-16.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.8,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 6.8,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has a heap-based buffer overflow in UHDR encoder"
},
{
"cve": "CVE-2026-30936",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a crafted image could cause an out of bounds heap write inside the WaveletDenoiseImage method. When processing a crafted image with the -wavelet-denoise operation an out of bounds write can occur. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has a heap Buffer Overflow in WaveletDenoiseImage"
},
{
"cve": "CVE-2026-30937",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a 32-bit unsigned integer overflow in the XWD (X Windows) encoder can cause an undersized heap buffer allocation. When writing a extremely large image an out of bounds heap write can occur. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 6.8,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 6.8,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has a heap buffer overflow in WriteXWDImage due to CARD32 arithmetic overflow in bytes_per_line calculation"
},
{
"cve": "CVE-2026-28687",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap use-after-free vulnerability in ImageMagick\u0027s MSL decoder allows an attacker to trigger access to freed memory by crafting an MSL file. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"environmentalScore": 5.3,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 5.3,
"temporalSeverity": "MEDIUM",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has a Heap Use-After-Free in ImageMagick MSL decoder"
},
{
"cve": "CVE-2026-28690",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow vulnerability exists in the MNG encoder. There is a bounds checks missing that could corrupting the stack with attacker-controlled data. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"environmentalScore": 6.5,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 6.5,
"temporalSeverity": "MEDIUM",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has a stack write buffer overflow in MNG encoder"
},
{
"cve": "CVE-2026-28693",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an integer overflow in DIB coder can result in out of bounds read or write. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalScore": 8.1,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 8.1,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has an integer overflow in DIB coder can result in out of bounds read or write"
},
{
"cve": "CVE-2026-30935",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, BilateralBlurImage contains a heap buffer over-read caused by an incorrect conversion. When processing a crafted image with the -bilateral-blur operation an out of bounds read can occur. This vulnerability is fixed in 7.1.2-16.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"environmentalScore": 4.4,
"environmentalSeverity": "MEDIUM",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 4.4,
"temporalSeverity": "MEDIUM",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick has a heap Buffer Over-Read in BilateralBlurImage"
},
{
"cve": "CVE-2026-28494",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "description",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow exists in ImageMagick\u0027s morphology kernel parsing functions. User-controlled kernel strings exceeding a buffer are copied into fixed-size stack buffers via memcpy without bounds checking, resulting in stack corruption. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-22001"
],
"known_affected": [
"CSAFPID-21001",
"CSAFPID-21002"
]
},
"remediations": [
{
"category": "vendor_fix",
"date": "2026-03-25T11:00:00.000Z",
"details": "Update the WAGO Visualization And Control Hub to version 5.0.1.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.1,
"environmentalSeverity": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.1,
"temporalSeverity": "HIGH",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-21001",
"CSAFPID-21002"
]
}
],
"title": "ImageMagick affected by stack corruption through long morphology kernel names or arrays"
}
]
}
WID-SEC-W-2026-0643
Vulnerability from csaf_certbund - Published: 2026-03-09 23:00 - Updated: 2026-03-19 23:00Summary
ImageMagick: Mehrere Schwachstellen
Severity
Mittel
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: ImageMagick ist eine Sammlung von Programmbibliotheken und Werkzeugen, die Grafiken in zahlreichen Formaten verarbeiten kann.
Angriff: Ein Angreifer kann mehrere Schwachstellen in ImageMagick ausnutzen, um möglicherweise beliebigen Code auszuführen, um Daten oder Speicher zu manipulieren, einen Denial-of-Service-Zustand zu verursachen oder andere, nicht näher spezifizierte Angriffe durchzuführen.
Betroffene Betriebssysteme: - Sonstiges
- UNIX
- Windows
References
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "ImageMagick ist eine Sammlung von Programmbibliotheken und Werkzeugen, die Grafiken in zahlreichen Formaten verarbeiten kann.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in ImageMagick ausnutzen, um m\u00f6glicherweise beliebigen Code auszuf\u00fchren, um Daten oder Speicher zu manipulieren, einen Denial-of-Service-Zustand zu verursachen oder andere, nicht n\u00e4her spezifizierte Angriffe durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2026-0643 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0643.json"
},
{
"category": "self",
"summary": "WID-SEC-2026-0643 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0643"
},
{
"category": "external",
"summary": "ImageMagic GitHub vom 2026-03-09",
"url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-467j-76j7-5885"
},
{
"category": "external",
"summary": "ImageMagic GitHub vom 2026-03-09",
"url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-56jp-jfqg-f8f4"
},
{
"category": "external",
"summary": "ImageMagic GitHub vom 2026-03-09",
"url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-5ggv-92r5-cp4p"
},
{
"category": "external",
"summary": "ImageMagic GitHub vom 2026-03-09",
"url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-7h7q-j33q-hvpf"
},
{
"category": "external",
"summary": "ImageMagic GitHub vom 2026-03-09",
"url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-932h-jw47-73jm"
},
{
"category": "external",
"summary": "ImageMagic GitHub vom 2026-03-09",
"url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-cqw9-w2m7-r2m2"
},
{
"category": "external",
"summary": "ImageMagic GitHub vom 2026-03-09",
"url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-fpvf-frm6-625q"
},
{
"category": "external",
"summary": "ImageMagic GitHub vom 2026-03-09",
"url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-h95r-c8c7-mrwx"
},
{
"category": "external",
"summary": "ImageMagic GitHub vom 2026-03-09",
"url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-hffp-q43q-qq76"
},
{
"category": "external",
"summary": "ImageMagic GitHub vom 2026-03-09",
"url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-mrmj-x24c-wwcv"
},
{
"category": "external",
"summary": "ImageMagic GitHub vom 2026-03-09",
"url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-qmw5-2p58-xvrc"
},
{
"category": "external",
"summary": "ImageMagic GitHub vom 2026-03-09",
"url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-rqq8-jh93-f4vg"
},
{
"category": "external",
"summary": "ImageMagic GitHub vom 2026-03-09",
"url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-wj8w-pjxf-9g4f"
},
{
"category": "external",
"summary": "ImageMagic GitHub vom 2026-03-09",
"url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-xxw5-m53x-j38c"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-6169 vom 2026-03-20",
"url": "https://lists.debian.org/debian-security-announce/2026/msg00078.html"
}
],
"source_lang": "en-US",
"title": "ImageMagick: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2026-03-19T23:00:00.000+00:00",
"generator": {
"date": "2026-03-20T08:38:22.805+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.5.0"
}
},
"id": "WID-SEC-W-2026-0643",
"initial_release_date": "2026-03-09T23:00:00.000+00:00",
"revision_history": [
{
"date": "2026-03-09T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2026-03-10T23:00:00.000+00:00",
"number": "2",
"summary": "Referenz(en) aufgenommen: 2445877, 2445896, 2445887"
},
{
"date": "2026-03-11T23:00:00.000+00:00",
"number": "3",
"summary": "Referenz(en) aufgenommen: EUVD-2026-11243"
},
{
"date": "2026-03-19T23:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Debian aufgenommen"
}
],
"status": "final",
"version": "4"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c7.1.2-16",
"product": {
"name": "Open Source ImageMagick \u003c7.1.2-16",
"product_id": "T051502"
}
},
{
"category": "product_version",
"name": "7.1.2-16",
"product": {
"name": "Open Source ImageMagick 7.1.2-16",
"product_id": "T051502-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:imagemagick:imagemagick:7.1.2-16"
}
}
},
{
"category": "product_version_range",
"name": "\u003c6.9.13-41",
"product": {
"name": "Open Source ImageMagick \u003c6.9.13-41",
"product_id": "T051503"
}
},
{
"category": "product_version",
"name": "6.9.13-41",
"product": {
"name": "Open Source ImageMagick 6.9.13-41",
"product_id": "T051503-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:imagemagick:imagemagick:6.9.13-41"
}
}
}
],
"category": "product_name",
"name": "ImageMagick"
}
],
"category": "vendor",
"name": "Open Source"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-28493",
"product_status": {
"known_affected": [
"2951",
"T051503",
"T051502"
]
},
"release_date": "2026-03-09T23:00:00.000+00:00",
"title": "CVE-2026-28493"
},
{
"cve": "CVE-2026-28494",
"product_status": {
"known_affected": [
"2951",
"T051503",
"T051502"
]
},
"release_date": "2026-03-09T23:00:00.000+00:00",
"title": "CVE-2026-28494"
},
{
"cve": "CVE-2026-28686",
"product_status": {
"known_affected": [
"2951",
"T051503",
"T051502"
]
},
"release_date": "2026-03-09T23:00:00.000+00:00",
"title": "CVE-2026-28686"
},
{
"cve": "CVE-2026-28687",
"product_status": {
"known_affected": [
"2951",
"T051503",
"T051502"
]
},
"release_date": "2026-03-09T23:00:00.000+00:00",
"title": "CVE-2026-28687"
},
{
"cve": "CVE-2026-28688",
"product_status": {
"known_affected": [
"2951",
"T051503",
"T051502"
]
},
"release_date": "2026-03-09T23:00:00.000+00:00",
"title": "CVE-2026-28688"
},
{
"cve": "CVE-2026-28689",
"product_status": {
"known_affected": [
"2951",
"T051503",
"T051502"
]
},
"release_date": "2026-03-09T23:00:00.000+00:00",
"title": "CVE-2026-28689"
},
{
"cve": "CVE-2026-28690",
"product_status": {
"known_affected": [
"2951",
"T051503",
"T051502"
]
},
"release_date": "2026-03-09T23:00:00.000+00:00",
"title": "CVE-2026-28690"
},
{
"cve": "CVE-2026-28691",
"product_status": {
"known_affected": [
"2951",
"T051503",
"T051502"
]
},
"release_date": "2026-03-09T23:00:00.000+00:00",
"title": "CVE-2026-28691"
},
{
"cve": "CVE-2026-28692",
"product_status": {
"known_affected": [
"2951",
"T051503",
"T051502"
]
},
"release_date": "2026-03-09T23:00:00.000+00:00",
"title": "CVE-2026-28692"
},
{
"cve": "CVE-2026-28693",
"product_status": {
"known_affected": [
"2951",
"T051503",
"T051502"
]
},
"release_date": "2026-03-09T23:00:00.000+00:00",
"title": "CVE-2026-28693"
},
{
"cve": "CVE-2026-30883",
"product_status": {
"known_affected": [
"2951",
"T051503",
"T051502"
]
},
"release_date": "2026-03-09T23:00:00.000+00:00",
"title": "CVE-2026-30883"
},
{
"cve": "CVE-2026-30929",
"product_status": {
"known_affected": [
"2951",
"T051503",
"T051502"
]
},
"release_date": "2026-03-09T23:00:00.000+00:00",
"title": "CVE-2026-30929"
},
{
"cve": "CVE-2026-30931",
"product_status": {
"known_affected": [
"2951",
"T051503",
"T051502"
]
},
"release_date": "2026-03-09T23:00:00.000+00:00",
"title": "CVE-2026-30931"
},
{
"cve": "CVE-2026-30935",
"product_status": {
"known_affected": [
"2951",
"T051503",
"T051502"
]
},
"release_date": "2026-03-09T23:00:00.000+00:00",
"title": "CVE-2026-30935"
},
{
"cve": "CVE-2026-30936",
"product_status": {
"known_affected": [
"2951",
"T051503",
"T051502"
]
},
"release_date": "2026-03-09T23:00:00.000+00:00",
"title": "CVE-2026-30936"
},
{
"cve": "CVE-2026-30937",
"product_status": {
"known_affected": [
"2951",
"T051503",
"T051502"
]
},
"release_date": "2026-03-09T23:00:00.000+00:00",
"title": "CVE-2026-30937"
},
{
"cve": "CVE-2026-31853",
"product_status": {
"known_affected": [
"2951",
"T051503",
"T051502"
]
},
"release_date": "2026-03-09T23:00:00.000+00:00",
"title": "CVE-2026-31853"
}
]
}
OPENSUSE-SU-2026:10386-1
Vulnerability from csaf_opensuse - Published: 2026-03-18 00:00 - Updated: 2026-03-18 00:00Summary
ImageMagick-7.1.2.17-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: ImageMagick-7.1.2.17-1.1 on GA media
Description of the patch: These are all security issues fixed in the ImageMagick-7.1.2.17-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2026-10386
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.2 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.6 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.2 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.6 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.2 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.6 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.6 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.6 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.6 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.6 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "ImageMagick-7.1.2.17-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the ImageMagick-7.1.2.17-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2026-10386",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_10386-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-28493 page",
"url": "https://www.suse.com/security/cve/CVE-2026-28493/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-28494 page",
"url": "https://www.suse.com/security/cve/CVE-2026-28494/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-28686 page",
"url": "https://www.suse.com/security/cve/CVE-2026-28686/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-28687 page",
"url": "https://www.suse.com/security/cve/CVE-2026-28687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-28688 page",
"url": "https://www.suse.com/security/cve/CVE-2026-28688/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-28689 page",
"url": "https://www.suse.com/security/cve/CVE-2026-28689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-28690 page",
"url": "https://www.suse.com/security/cve/CVE-2026-28690/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-28691 page",
"url": "https://www.suse.com/security/cve/CVE-2026-28691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-28692 page",
"url": "https://www.suse.com/security/cve/CVE-2026-28692/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-28693 page",
"url": "https://www.suse.com/security/cve/CVE-2026-28693/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-30883 page",
"url": "https://www.suse.com/security/cve/CVE-2026-30883/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-30929 page",
"url": "https://www.suse.com/security/cve/CVE-2026-30929/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-30931 page",
"url": "https://www.suse.com/security/cve/CVE-2026-30931/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-30935 page",
"url": "https://www.suse.com/security/cve/CVE-2026-30935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-30936 page",
"url": "https://www.suse.com/security/cve/CVE-2026-30936/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-30937 page",
"url": "https://www.suse.com/security/cve/CVE-2026-30937/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-31853 page",
"url": "https://www.suse.com/security/cve/CVE-2026-31853/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-32259 page",
"url": "https://www.suse.com/security/cve/CVE-2026-32259/"
}
],
"title": "ImageMagick-7.1.2.17-1.1 on GA media",
"tracking": {
"current_release_date": "2026-03-18T00:00:00Z",
"generator": {
"date": "2026-03-18T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:10386-1",
"initial_release_date": "2026-03-18T00:00:00Z",
"revision_history": [
{
"date": "2026-03-18T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-7.1.2.17-1.1.aarch64",
"product": {
"name": "ImageMagick-7.1.2.17-1.1.aarch64",
"product_id": "ImageMagick-7.1.2.17-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"product": {
"name": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"product_id": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-7.1.2.17-1.1.aarch64",
"product": {
"name": "ImageMagick-devel-7.1.2.17-1.1.aarch64",
"product_id": "ImageMagick-devel-7.1.2.17-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"product": {
"name": "ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"product_id": "ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "ImageMagick-doc-7.1.2.17-1.1.aarch64",
"product": {
"name": "ImageMagick-doc-7.1.2.17-1.1.aarch64",
"product_id": "ImageMagick-doc-7.1.2.17-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "ImageMagick-extra-7.1.2.17-1.1.aarch64",
"product": {
"name": "ImageMagick-extra-7.1.2.17-1.1.aarch64",
"product_id": "ImageMagick-extra-7.1.2.17-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"product": {
"name": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"product_id": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"product": {
"name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"product_id": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-7.1.2.17-1.1.aarch64",
"product": {
"name": "libMagick++-devel-7.1.2.17-1.1.aarch64",
"product_id": "libMagick++-devel-7.1.2.17-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"product": {
"name": "libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"product_id": "libMagick++-devel-32bit-7.1.2.17-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"product": {
"name": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"product_id": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"product": {
"name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"product_id": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"product": {
"name": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"product_id": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"product": {
"name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"product_id": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-7.1.2.17-1.1.aarch64",
"product": {
"name": "perl-PerlMagick-7.1.2.17-1.1.aarch64",
"product_id": "perl-PerlMagick-7.1.2.17-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-7.1.2.17-1.1.ppc64le",
"product": {
"name": "ImageMagick-7.1.2.17-1.1.ppc64le",
"product_id": "ImageMagick-7.1.2.17-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"product": {
"name": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"product_id": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"product": {
"name": "ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"product_id": "ImageMagick-devel-7.1.2.17-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"product": {
"name": "ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"product_id": "ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"product": {
"name": "ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"product_id": "ImageMagick-doc-7.1.2.17-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"product": {
"name": "ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"product_id": "ImageMagick-extra-7.1.2.17-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"product": {
"name": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"product_id": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"product": {
"name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"product_id": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-7.1.2.17-1.1.ppc64le",
"product": {
"name": "libMagick++-devel-7.1.2.17-1.1.ppc64le",
"product_id": "libMagick++-devel-7.1.2.17-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"product": {
"name": "libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"product_id": "libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"product": {
"name": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"product_id": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"product": {
"name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"product_id": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"product": {
"name": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"product_id": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"product": {
"name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"product_id": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"product": {
"name": "perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"product_id": "perl-PerlMagick-7.1.2.17-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-7.1.2.17-1.1.s390x",
"product": {
"name": "ImageMagick-7.1.2.17-1.1.s390x",
"product_id": "ImageMagick-7.1.2.17-1.1.s390x"
}
},
{
"category": "product_version",
"name": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"product": {
"name": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"product_id": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-7.1.2.17-1.1.s390x",
"product": {
"name": "ImageMagick-devel-7.1.2.17-1.1.s390x",
"product_id": "ImageMagick-devel-7.1.2.17-1.1.s390x"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"product": {
"name": "ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"product_id": "ImageMagick-devel-32bit-7.1.2.17-1.1.s390x"
}
},
{
"category": "product_version",
"name": "ImageMagick-doc-7.1.2.17-1.1.s390x",
"product": {
"name": "ImageMagick-doc-7.1.2.17-1.1.s390x",
"product_id": "ImageMagick-doc-7.1.2.17-1.1.s390x"
}
},
{
"category": "product_version",
"name": "ImageMagick-extra-7.1.2.17-1.1.s390x",
"product": {
"name": "ImageMagick-extra-7.1.2.17-1.1.s390x",
"product_id": "ImageMagick-extra-7.1.2.17-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"product": {
"name": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"product_id": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"product": {
"name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"product_id": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-7.1.2.17-1.1.s390x",
"product": {
"name": "libMagick++-devel-7.1.2.17-1.1.s390x",
"product_id": "libMagick++-devel-7.1.2.17-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"product": {
"name": "libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"product_id": "libMagick++-devel-32bit-7.1.2.17-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"product": {
"name": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"product_id": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"product": {
"name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"product_id": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"product": {
"name": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"product_id": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"product": {
"name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"product_id": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-7.1.2.17-1.1.s390x",
"product": {
"name": "perl-PerlMagick-7.1.2.17-1.1.s390x",
"product_id": "perl-PerlMagick-7.1.2.17-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-7.1.2.17-1.1.x86_64",
"product": {
"name": "ImageMagick-7.1.2.17-1.1.x86_64",
"product_id": "ImageMagick-7.1.2.17-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"product": {
"name": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"product_id": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-7.1.2.17-1.1.x86_64",
"product": {
"name": "ImageMagick-devel-7.1.2.17-1.1.x86_64",
"product_id": "ImageMagick-devel-7.1.2.17-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"product": {
"name": "ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"product_id": "ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "ImageMagick-doc-7.1.2.17-1.1.x86_64",
"product": {
"name": "ImageMagick-doc-7.1.2.17-1.1.x86_64",
"product_id": "ImageMagick-doc-7.1.2.17-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "ImageMagick-extra-7.1.2.17-1.1.x86_64",
"product": {
"name": "ImageMagick-extra-7.1.2.17-1.1.x86_64",
"product_id": "ImageMagick-extra-7.1.2.17-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"product": {
"name": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"product_id": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"product": {
"name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"product_id": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-7.1.2.17-1.1.x86_64",
"product": {
"name": "libMagick++-devel-7.1.2.17-1.1.x86_64",
"product_id": "libMagick++-devel-7.1.2.17-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"product": {
"name": "libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"product_id": "libMagick++-devel-32bit-7.1.2.17-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"product": {
"name": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"product_id": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"product": {
"name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"product_id": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"product": {
"name": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"product_id": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"product": {
"name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"product_id": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-7.1.2.17-1.1.x86_64",
"product": {
"name": "perl-PerlMagick-7.1.2.17-1.1.x86_64",
"product_id": "perl-PerlMagick-7.1.2.17-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-7.1.2.17-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64"
},
"product_reference": "ImageMagick-7.1.2.17-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-7.1.2.17-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le"
},
"product_reference": "ImageMagick-7.1.2.17-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-7.1.2.17-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x"
},
"product_reference": "ImageMagick-7.1.2.17-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-7.1.2.17-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64"
},
"product_reference": "ImageMagick-7.1.2.17-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64"
},
"product_reference": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le"
},
"product_reference": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x"
},
"product_reference": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64"
},
"product_reference": "ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-7.1.2.17-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64"
},
"product_reference": "ImageMagick-devel-7.1.2.17-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-7.1.2.17-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le"
},
"product_reference": "ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-7.1.2.17-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x"
},
"product_reference": "ImageMagick-devel-7.1.2.17-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-7.1.2.17-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64"
},
"product_reference": "ImageMagick-devel-7.1.2.17-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64"
},
"product_reference": "ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le"
},
"product_reference": "ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-32bit-7.1.2.17-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x"
},
"product_reference": "ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64"
},
"product_reference": "ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-doc-7.1.2.17-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64"
},
"product_reference": "ImageMagick-doc-7.1.2.17-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-doc-7.1.2.17-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le"
},
"product_reference": "ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-doc-7.1.2.17-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x"
},
"product_reference": "ImageMagick-doc-7.1.2.17-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-doc-7.1.2.17-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64"
},
"product_reference": "ImageMagick-doc-7.1.2.17-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-extra-7.1.2.17-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64"
},
"product_reference": "ImageMagick-extra-7.1.2.17-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-extra-7.1.2.17-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le"
},
"product_reference": "ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-extra-7.1.2.17-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x"
},
"product_reference": "ImageMagick-extra-7.1.2.17-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-extra-7.1.2.17-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64"
},
"product_reference": "ImageMagick-extra-7.1.2.17-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64"
},
"product_reference": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le"
},
"product_reference": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x"
},
"product_reference": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64"
},
"product_reference": "libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64"
},
"product_reference": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le"
},
"product_reference": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x"
},
"product_reference": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64"
},
"product_reference": "libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-7.1.2.17-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64"
},
"product_reference": "libMagick++-devel-7.1.2.17-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-7.1.2.17-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le"
},
"product_reference": "libMagick++-devel-7.1.2.17-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-7.1.2.17-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x"
},
"product_reference": "libMagick++-devel-7.1.2.17-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-7.1.2.17-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64"
},
"product_reference": "libMagick++-devel-7.1.2.17-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-32bit-7.1.2.17-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64"
},
"product_reference": "libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le"
},
"product_reference": "libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-32bit-7.1.2.17-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x"
},
"product_reference": "libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-32bit-7.1.2.17-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64"
},
"product_reference": "libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64"
},
"product_reference": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le"
},
"product_reference": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x"
},
"product_reference": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64"
},
"product_reference": "libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64"
},
"product_reference": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le"
},
"product_reference": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x"
},
"product_reference": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64"
},
"product_reference": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64"
},
"product_reference": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le"
},
"product_reference": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x"
},
"product_reference": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64"
},
"product_reference": "libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64"
},
"product_reference": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le"
},
"product_reference": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x"
},
"product_reference": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64"
},
"product_reference": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-7.1.2.17-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64"
},
"product_reference": "perl-PerlMagick-7.1.2.17-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-7.1.2.17-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le"
},
"product_reference": "perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-7.1.2.17-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x"
},
"product_reference": "perl-PerlMagick-7.1.2.17-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-7.1.2.17-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
},
"product_reference": "perl-PerlMagick-7.1.2.17-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-28493",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-28493"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, an integer overflow vulnerability exists in the SIXEL decoer. The vulnerability allows an attacker to perform an out of bounds via a specially crafted image. This vulnerability is fixed in 7.1.2-16.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-28493",
"url": "https://www.suse.com/security/cve/CVE-2026-28493"
},
{
"category": "external",
"summary": "SUSE Bug 1259446 for CVE-2026-28493",
"url": "https://bugzilla.suse.com/1259446"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-28493"
},
{
"cve": "CVE-2026-28494",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-28494"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow exists in ImageMagick\u0027s morphology kernel parsing functions. User-controlled kernel strings exceeding a buffer are copied into fixed-size stack buffers via memcpy without bounds checking, resulting in stack corruption. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-28494",
"url": "https://www.suse.com/security/cve/CVE-2026-28494"
},
{
"category": "external",
"summary": "SUSE Bug 1259447 for CVE-2026-28494",
"url": "https://bugzilla.suse.com/1259447"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-28494"
},
{
"cve": "CVE-2026-28686",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-28686"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, A heap-buffer-overflow vulnerability exists in the PCL encode due to an undersized output buffer allocation. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-28686",
"url": "https://www.suse.com/security/cve/CVE-2026-28686"
},
{
"category": "external",
"summary": "SUSE Bug 1259448 for CVE-2026-28686",
"url": "https://bugzilla.suse.com/1259448"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-28686"
},
{
"cve": "CVE-2026-28687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-28687"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap use-after-free vulnerability in ImageMagick\u0027s MSL decoder allows an attacker to trigger access to freed memory by crafting an MSL file. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-28687",
"url": "https://www.suse.com/security/cve/CVE-2026-28687"
},
{
"category": "external",
"summary": "SUSE Bug 1259450 for CVE-2026-28687",
"url": "https://bugzilla.suse.com/1259450"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-28687"
},
{
"cve": "CVE-2026-28688",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-28688"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap-use-after-free vulnerability exists in the MSL encoder, where a cloned image is destroyed twice. The MSL coder does not support writing MSL so the write capability has been removed. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-28688",
"url": "https://www.suse.com/security/cve/CVE-2026-28688"
},
{
"category": "external",
"summary": "SUSE Bug 1259451 for CVE-2026-28688",
"url": "https://bugzilla.suse.com/1259451"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-28688"
},
{
"cve": "CVE-2026-28689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-28689"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, domain=\"path\" authorization is checked before final file open/use. A symlink swap between check-time and use-time bypasses policy-denied read/write. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-28689",
"url": "https://www.suse.com/security/cve/CVE-2026-28689"
},
{
"category": "external",
"summary": "SUSE Bug 1259452 for CVE-2026-28689",
"url": "https://bugzilla.suse.com/1259452"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-28689"
},
{
"cve": "CVE-2026-28690",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-28690"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow vulnerability exists in the MNG encoder. There is a bounds checks missing that could corrupting the stack with attacker-controlled data. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-28690",
"url": "https://www.suse.com/security/cve/CVE-2026-28690"
},
{
"category": "external",
"summary": "SUSE Bug 1259456 for CVE-2026-28690",
"url": "https://bugzilla.suse.com/1259456"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-28690"
},
{
"cve": "CVE-2026-28691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-28691"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an uninitialized pointer dereference vulnerability exists in the JBIG decoder due to a missing check. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-28691",
"url": "https://www.suse.com/security/cve/CVE-2026-28691"
},
{
"category": "external",
"summary": "SUSE Bug 1259455 for CVE-2026-28691",
"url": "https://bugzilla.suse.com/1259455"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-28691"
},
{
"cve": "CVE-2026-28692",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-28692"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, MAT decoder uses 32-bit arithmetic due to incorrect parenthesization resulting in a heap over-read. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-28692",
"url": "https://www.suse.com/security/cve/CVE-2026-28692"
},
{
"category": "external",
"summary": "SUSE Bug 1259457 for CVE-2026-28692",
"url": "https://bugzilla.suse.com/1259457"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-28692"
},
{
"cve": "CVE-2026-28693",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-28693"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an integer overflow in DIB coder can result in out of bounds read or write. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-28693",
"url": "https://www.suse.com/security/cve/CVE-2026-28693"
},
{
"category": "external",
"summary": "SUSE Bug 1259466 for CVE-2026-28693",
"url": "https://bugzilla.suse.com/1259466"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-28693"
},
{
"cve": "CVE-2026-30883",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-30883"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an extremely large image profile could result in a heap overflow when encoding a PNG image. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-30883",
"url": "https://www.suse.com/security/cve/CVE-2026-30883"
},
{
"category": "external",
"summary": "SUSE Bug 1259467 for CVE-2026-30883",
"url": "https://bugzilla.suse.com/1259467"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-30883"
},
{
"cve": "CVE-2026-30929",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-30929"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, MagnifyImage uses a fixed-size stack buffer. When using a specific image it is possible to overflow this buffer and corrupt the stack. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-30929",
"url": "https://www.suse.com/security/cve/CVE-2026-30929"
},
{
"category": "external",
"summary": "SUSE Bug 1259468 for CVE-2026-30929",
"url": "https://bugzilla.suse.com/1259468"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-30929"
},
{
"cve": "CVE-2026-30931",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-30931"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, a heap-based buffer overflow in the UHDR encoder can happen due to truncation of a value and it would allow an out of bounds write. This vulnerability is fixed in 7.1.2-16.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-30931",
"url": "https://www.suse.com/security/cve/CVE-2026-30931"
},
{
"category": "external",
"summary": "SUSE Bug 1259469 for CVE-2026-30931",
"url": "https://bugzilla.suse.com/1259469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-30931"
},
{
"cve": "CVE-2026-30935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-30935"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, BilateralBlurImage contains a heap buffer over-read caused by an incorrect conversion. When processing a crafted image with the -bilateral-blur operation an out of bounds read can occur. This vulnerability is fixed in 7.1.2-16.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-30935",
"url": "https://www.suse.com/security/cve/CVE-2026-30935"
},
{
"category": "external",
"summary": "SUSE Bug 1259497 for CVE-2026-30935",
"url": "https://bugzilla.suse.com/1259497"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-30935"
},
{
"cve": "CVE-2026-30936",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-30936"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a crafted image could cause an out of bounds heap write inside the WaveletDenoiseImage method. When processing a crafted image with the -wavelet-denoise operation an out of bounds write can occur. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-30936",
"url": "https://www.suse.com/security/cve/CVE-2026-30936"
},
{
"category": "external",
"summary": "SUSE Bug 1259464 for CVE-2026-30936",
"url": "https://bugzilla.suse.com/1259464"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-30936"
},
{
"cve": "CVE-2026-30937",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-30937"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a 32-bit unsigned integer overflow in the XWD (X Windows) encoder can cause an undersized heap buffer allocation. When writing a extremely large image an out of bounds heap write can occur. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-30937",
"url": "https://www.suse.com/security/cve/CVE-2026-30937"
},
{
"category": "external",
"summary": "SUSE Bug 1259463 for CVE-2026-30937",
"url": "https://bugzilla.suse.com/1259463"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-30937"
},
{
"cve": "CVE-2026-31853",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-31853"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-16 and 6.9.13-41, an overflow on 32-bit systems can cause a crash in the SFW decoder when processing extremely large images. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-31853",
"url": "https://www.suse.com/security/cve/CVE-2026-31853"
},
{
"category": "external",
"summary": "SUSE Bug 1259528 for CVE-2026-31853",
"url": "https://bugzilla.suse.com/1259528"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-31853"
},
{
"cve": "CVE-2026-32259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-32259"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-16 and 6.9.13-41, when a memory allocation fails in the sixel encoder it would be possible to write past the end of a buffer on the stack. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-32259",
"url": "https://www.suse.com/security/cve/CVE-2026-32259"
},
{
"category": "external",
"summary": "SUSE Bug 1259612 for CVE-2026-32259",
"url": "https://bugzilla.suse.com/1259612"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1.x86_64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.aarch64",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.ppc64le",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.s390x",
"openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-32259"
}
]
}
Loading…
Show additional events:
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…