cvelistv5 - cve-2025-65955

CVE-2025-65955 (GCVE-0-2025-65955)

Vulnerability from cvelistv5

Published

2025-12-02 23:02

Modified

2025-12-11 20:54

Severity ?

4.9 (Medium) - CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE

CWE-415 - Double Free
CWE-416 - Use After Free

Summary

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-9 and 6.9.13-34, there is a vulnerability in ImageMagick’s Magick++ layer that manifests when Options::fontFamily is invoked with an empty string. Clearing a font family calls RelinquishMagickMemory on _drawInfo->font, freeing the font string but leaving _drawInfo->font pointing to freed memory while _drawInfo->family is set to that (now-invalid) pointer. Any later cleanup or reuse of _drawInfo->font re-frees or dereferences dangling memory. DestroyDrawInfo and other setters (Options::font, Image::font) assume _drawInfo->font remains valid, so destruction or subsequent updates trigger crashes or heap corruption. This vulnerability is fixed in 7.1.2-9 and 6.9.13-34.

References

URL

	Vendor	Product	Version
	ImageMagick	ImageMagick	Version: >= 7.0.1-0, < 7.1.2-9 Version: < 6.9.13-34

fkie_cve-2025-65955

Vulnerability from fkie_nvd

Published

2025-12-02 23:15

Modified

2025-12-12 15:19

Severity ?

4.9 (Medium) - CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Summary

References

	URL	Tags
	security-advisories@github.com	https://github.com/ImageMagick/ImageMagick/commit/6409f34d637a34a1c643632aa849371ec8b3b5a8
	security-advisories@github.com	https://github.com/ImageMagick/ImageMagick/commit/6f81eb15f822ad86e8255be75efad6f9762c32f8
	security-advisories@github.com	https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-q3hc-j9x5-mp9m

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-9 and 6.9.13-34, there is a vulnerability in ImageMagick\u2019s Magick++ layer that manifests when Options::fontFamily is invoked with an empty string. Clearing a font family calls RelinquishMagickMemory on _drawInfo-\u003efont, freeing the font string but leaving _drawInfo-\u003efont pointing to freed memory while _drawInfo-\u003efamily is set to that (now-invalid) pointer. Any later cleanup or reuse of _drawInfo-\u003efont re-frees or dereferences dangling memory. DestroyDrawInfo and other setters (Options::font, Image::font) assume _drawInfo-\u003efont remains valid, so destruction or subsequent updates trigger crashes or heap corruption. This vulnerability is fixed in 7.1.2-9 and 6.9.13-34."
    }
  ],
  "id": "CVE-2025-65955",
  "lastModified": "2025-12-12T15:19:07.567",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "LOCAL",
          "availabilityImpact": "LOW",
          "baseScore": 4.9,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
          "version": "3.1"
        },
        "exploitabilityScore": 1.4,
        "impactScore": 3.4,
        "source": "security-advisories@github.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-12-02T23:15:45.603",
  "references": [
    {
      "source": "security-advisories@github.com",
      "url": "https://github.com/ImageMagick/ImageMagick/commit/6409f34d637a34a1c643632aa849371ec8b3b5a8"
    },
    {
      "source": "security-advisories@github.com",
      "url": "https://github.com/ImageMagick/ImageMagick/commit/6f81eb15f822ad86e8255be75efad6f9762c32f8"
    },
    {
      "source": "security-advisories@github.com",
      "url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-q3hc-j9x5-mp9m"
    }
  ],
  "sourceIdentifier": "security-advisories@github.com",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-415"
        },
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "security-advisories@github.com",
      "type": "Primary"
    }
  ]
}

opensuse-su-2025:15816-1

Vulnerability from csaf_opensuse

Published

2025-12-12 00:00

Modified

2025-12-12 00:00

Summary

ImageMagick-7.1.2.10-1.1 on GA media

Notes

Title of the patch

ImageMagick-7.1.2.10-1.1 on GA media

Description of the patch

These are all security issues fixed in the ImageMagick-7.1.2.10-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames

openSUSE-Tumbleweed-2025-15816

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "ImageMagick-7.1.2.10-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the ImageMagick-7.1.2.10-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2025-15816",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15816-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-65955 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-65955/"
      }
    ],
    "title": "ImageMagick-7.1.2.10-1.1 on GA media",
    "tracking": {
      "current_release_date": "2025-12-12T00:00:00Z",
      "generator": {
        "date": "2025-12-12T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2025:15816-1",
      "initial_release_date": "2025-12-12T00:00:00Z",
      "revision_history": [
        {
          "date": "2025-12-12T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ImageMagick-7.1.2.10-1.1.aarch64",
                "product": {
                  "name": "ImageMagick-7.1.2.10-1.1.aarch64",
                  "product_id": "ImageMagick-7.1.2.10-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.aarch64",
                "product": {
                  "name": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.aarch64",
                  "product_id": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-devel-7.1.2.10-1.1.aarch64",
                "product": {
                  "name": "ImageMagick-devel-7.1.2.10-1.1.aarch64",
                  "product_id": "ImageMagick-devel-7.1.2.10-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-devel-32bit-7.1.2.10-1.1.aarch64",
                "product": {
                  "name": "ImageMagick-devel-32bit-7.1.2.10-1.1.aarch64",
                  "product_id": "ImageMagick-devel-32bit-7.1.2.10-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-doc-7.1.2.10-1.1.aarch64",
                "product": {
                  "name": "ImageMagick-doc-7.1.2.10-1.1.aarch64",
                  "product_id": "ImageMagick-doc-7.1.2.10-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-extra-7.1.2.10-1.1.aarch64",
                "product": {
                  "name": "ImageMagick-extra-7.1.2.10-1.1.aarch64",
                  "product_id": "ImageMagick-extra-7.1.2.10-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.aarch64",
                "product": {
                  "name": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.aarch64",
                  "product_id": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.aarch64",
                "product": {
                  "name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.aarch64",
                  "product_id": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libMagick++-devel-7.1.2.10-1.1.aarch64",
                "product": {
                  "name": "libMagick++-devel-7.1.2.10-1.1.aarch64",
                  "product_id": "libMagick++-devel-7.1.2.10-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libMagick++-devel-32bit-7.1.2.10-1.1.aarch64",
                "product": {
                  "name": "libMagick++-devel-32bit-7.1.2.10-1.1.aarch64",
                  "product_id": "libMagick++-devel-32bit-7.1.2.10-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.aarch64",
                "product": {
                  "name": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.aarch64",
                  "product_id": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.aarch64",
                "product": {
                  "name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.aarch64",
                  "product_id": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.aarch64",
                "product": {
                  "name": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.aarch64",
                  "product_id": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.aarch64",
                "product": {
                  "name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.aarch64",
                  "product_id": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "perl-PerlMagick-7.1.2.10-1.1.aarch64",
                "product": {
                  "name": "perl-PerlMagick-7.1.2.10-1.1.aarch64",
                  "product_id": "perl-PerlMagick-7.1.2.10-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ImageMagick-7.1.2.10-1.1.ppc64le",
                "product": {
                  "name": "ImageMagick-7.1.2.10-1.1.ppc64le",
                  "product_id": "ImageMagick-7.1.2.10-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.ppc64le",
                "product": {
                  "name": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.ppc64le",
                  "product_id": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-devel-7.1.2.10-1.1.ppc64le",
                "product": {
                  "name": "ImageMagick-devel-7.1.2.10-1.1.ppc64le",
                  "product_id": "ImageMagick-devel-7.1.2.10-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-devel-32bit-7.1.2.10-1.1.ppc64le",
                "product": {
                  "name": "ImageMagick-devel-32bit-7.1.2.10-1.1.ppc64le",
                  "product_id": "ImageMagick-devel-32bit-7.1.2.10-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-doc-7.1.2.10-1.1.ppc64le",
                "product": {
                  "name": "ImageMagick-doc-7.1.2.10-1.1.ppc64le",
                  "product_id": "ImageMagick-doc-7.1.2.10-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-extra-7.1.2.10-1.1.ppc64le",
                "product": {
                  "name": "ImageMagick-extra-7.1.2.10-1.1.ppc64le",
                  "product_id": "ImageMagick-extra-7.1.2.10-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.ppc64le",
                "product": {
                  "name": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.ppc64le",
                  "product_id": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.ppc64le",
                "product": {
                  "name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.ppc64le",
                  "product_id": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libMagick++-devel-7.1.2.10-1.1.ppc64le",
                "product": {
                  "name": "libMagick++-devel-7.1.2.10-1.1.ppc64le",
                  "product_id": "libMagick++-devel-7.1.2.10-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libMagick++-devel-32bit-7.1.2.10-1.1.ppc64le",
                "product": {
                  "name": "libMagick++-devel-32bit-7.1.2.10-1.1.ppc64le",
                  "product_id": "libMagick++-devel-32bit-7.1.2.10-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.ppc64le",
                "product": {
                  "name": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.ppc64le",
                  "product_id": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.ppc64le",
                "product": {
                  "name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.ppc64le",
                  "product_id": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.ppc64le",
                "product": {
                  "name": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.ppc64le",
                  "product_id": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.ppc64le",
                "product": {
                  "name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.ppc64le",
                  "product_id": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "perl-PerlMagick-7.1.2.10-1.1.ppc64le",
                "product": {
                  "name": "perl-PerlMagick-7.1.2.10-1.1.ppc64le",
                  "product_id": "perl-PerlMagick-7.1.2.10-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ImageMagick-7.1.2.10-1.1.s390x",
                "product": {
                  "name": "ImageMagick-7.1.2.10-1.1.s390x",
                  "product_id": "ImageMagick-7.1.2.10-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.s390x",
                "product": {
                  "name": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.s390x",
                  "product_id": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-devel-7.1.2.10-1.1.s390x",
                "product": {
                  "name": "ImageMagick-devel-7.1.2.10-1.1.s390x",
                  "product_id": "ImageMagick-devel-7.1.2.10-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-devel-32bit-7.1.2.10-1.1.s390x",
                "product": {
                  "name": "ImageMagick-devel-32bit-7.1.2.10-1.1.s390x",
                  "product_id": "ImageMagick-devel-32bit-7.1.2.10-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-doc-7.1.2.10-1.1.s390x",
                "product": {
                  "name": "ImageMagick-doc-7.1.2.10-1.1.s390x",
                  "product_id": "ImageMagick-doc-7.1.2.10-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-extra-7.1.2.10-1.1.s390x",
                "product": {
                  "name": "ImageMagick-extra-7.1.2.10-1.1.s390x",
                  "product_id": "ImageMagick-extra-7.1.2.10-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.s390x",
                "product": {
                  "name": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.s390x",
                  "product_id": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.s390x",
                "product": {
                  "name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.s390x",
                  "product_id": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libMagick++-devel-7.1.2.10-1.1.s390x",
                "product": {
                  "name": "libMagick++-devel-7.1.2.10-1.1.s390x",
                  "product_id": "libMagick++-devel-7.1.2.10-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libMagick++-devel-32bit-7.1.2.10-1.1.s390x",
                "product": {
                  "name": "libMagick++-devel-32bit-7.1.2.10-1.1.s390x",
                  "product_id": "libMagick++-devel-32bit-7.1.2.10-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.s390x",
                "product": {
                  "name": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.s390x",
                  "product_id": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.s390x",
                "product": {
                  "name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.s390x",
                  "product_id": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.s390x",
                "product": {
                  "name": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.s390x",
                  "product_id": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.s390x",
                "product": {
                  "name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.s390x",
                  "product_id": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "perl-PerlMagick-7.1.2.10-1.1.s390x",
                "product": {
                  "name": "perl-PerlMagick-7.1.2.10-1.1.s390x",
                  "product_id": "perl-PerlMagick-7.1.2.10-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ImageMagick-7.1.2.10-1.1.x86_64",
                "product": {
                  "name": "ImageMagick-7.1.2.10-1.1.x86_64",
                  "product_id": "ImageMagick-7.1.2.10-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.x86_64",
                "product": {
                  "name": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.x86_64",
                  "product_id": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-devel-7.1.2.10-1.1.x86_64",
                "product": {
                  "name": "ImageMagick-devel-7.1.2.10-1.1.x86_64",
                  "product_id": "ImageMagick-devel-7.1.2.10-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-devel-32bit-7.1.2.10-1.1.x86_64",
                "product": {
                  "name": "ImageMagick-devel-32bit-7.1.2.10-1.1.x86_64",
                  "product_id": "ImageMagick-devel-32bit-7.1.2.10-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-doc-7.1.2.10-1.1.x86_64",
                "product": {
                  "name": "ImageMagick-doc-7.1.2.10-1.1.x86_64",
                  "product_id": "ImageMagick-doc-7.1.2.10-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "ImageMagick-extra-7.1.2.10-1.1.x86_64",
                "product": {
                  "name": "ImageMagick-extra-7.1.2.10-1.1.x86_64",
                  "product_id": "ImageMagick-extra-7.1.2.10-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.x86_64",
                "product": {
                  "name": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.x86_64",
                  "product_id": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.x86_64",
                "product": {
                  "name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.x86_64",
                  "product_id": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libMagick++-devel-7.1.2.10-1.1.x86_64",
                "product": {
                  "name": "libMagick++-devel-7.1.2.10-1.1.x86_64",
                  "product_id": "libMagick++-devel-7.1.2.10-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libMagick++-devel-32bit-7.1.2.10-1.1.x86_64",
                "product": {
                  "name": "libMagick++-devel-32bit-7.1.2.10-1.1.x86_64",
                  "product_id": "libMagick++-devel-32bit-7.1.2.10-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.x86_64",
                "product": {
                  "name": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.x86_64",
                  "product_id": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.x86_64",
                "product": {
                  "name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.x86_64",
                  "product_id": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.x86_64",
                "product": {
                  "name": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.x86_64",
                  "product_id": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.x86_64",
                "product": {
                  "name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.x86_64",
                  "product_id": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "perl-PerlMagick-7.1.2.10-1.1.x86_64",
                "product": {
                  "name": "perl-PerlMagick-7.1.2.10-1.1.x86_64",
                  "product_id": "perl-PerlMagick-7.1.2.10-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-7.1.2.10-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-7.1.2.10-1.1.aarch64"
        },
        "product_reference": "ImageMagick-7.1.2.10-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-7.1.2.10-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-7.1.2.10-1.1.ppc64le"
        },
        "product_reference": "ImageMagick-7.1.2.10-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-7.1.2.10-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-7.1.2.10-1.1.s390x"
        },
        "product_reference": "ImageMagick-7.1.2.10-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-7.1.2.10-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-7.1.2.10-1.1.x86_64"
        },
        "product_reference": "ImageMagick-7.1.2.10-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.10-1.1.aarch64"
        },
        "product_reference": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.10-1.1.ppc64le"
        },
        "product_reference": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.10-1.1.s390x"
        },
        "product_reference": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.10-1.1.x86_64"
        },
        "product_reference": "ImageMagick-config-7-SUSE-7.1.2.10-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-devel-7.1.2.10-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.10-1.1.aarch64"
        },
        "product_reference": "ImageMagick-devel-7.1.2.10-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-devel-7.1.2.10-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.10-1.1.ppc64le"
        },
        "product_reference": "ImageMagick-devel-7.1.2.10-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-devel-7.1.2.10-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.10-1.1.s390x"
        },
        "product_reference": "ImageMagick-devel-7.1.2.10-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-devel-7.1.2.10-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.10-1.1.x86_64"
        },
        "product_reference": "ImageMagick-devel-7.1.2.10-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-devel-32bit-7.1.2.10-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.10-1.1.aarch64"
        },
        "product_reference": "ImageMagick-devel-32bit-7.1.2.10-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-devel-32bit-7.1.2.10-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.10-1.1.ppc64le"
        },
        "product_reference": "ImageMagick-devel-32bit-7.1.2.10-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-devel-32bit-7.1.2.10-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.10-1.1.s390x"
        },
        "product_reference": "ImageMagick-devel-32bit-7.1.2.10-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-devel-32bit-7.1.2.10-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.10-1.1.x86_64"
        },
        "product_reference": "ImageMagick-devel-32bit-7.1.2.10-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-doc-7.1.2.10-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.10-1.1.aarch64"
        },
        "product_reference": "ImageMagick-doc-7.1.2.10-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-doc-7.1.2.10-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.10-1.1.ppc64le"
        },
        "product_reference": "ImageMagick-doc-7.1.2.10-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-doc-7.1.2.10-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.10-1.1.s390x"
        },
        "product_reference": "ImageMagick-doc-7.1.2.10-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-doc-7.1.2.10-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.10-1.1.x86_64"
        },
        "product_reference": "ImageMagick-doc-7.1.2.10-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-extra-7.1.2.10-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.10-1.1.aarch64"
        },
        "product_reference": "ImageMagick-extra-7.1.2.10-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-extra-7.1.2.10-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.10-1.1.ppc64le"
        },
        "product_reference": "ImageMagick-extra-7.1.2.10-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-extra-7.1.2.10-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.10-1.1.s390x"
        },
        "product_reference": "ImageMagick-extra-7.1.2.10-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ImageMagick-extra-7.1.2.10-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.10-1.1.x86_64"
        },
        "product_reference": "ImageMagick-extra-7.1.2.10-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.10-1.1.aarch64"
        },
        "product_reference": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.10-1.1.ppc64le"
        },
        "product_reference": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.10-1.1.s390x"
        },
        "product_reference": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.10-1.1.x86_64"
        },
        "product_reference": "libMagick++-7_Q16HDRI5-7.1.2.10-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.aarch64"
        },
        "product_reference": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.ppc64le"
        },
        "product_reference": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.s390x"
        },
        "product_reference": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.x86_64"
        },
        "product_reference": "libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagick++-devel-7.1.2.10-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagick++-devel-7.1.2.10-1.1.aarch64"
        },
        "product_reference": "libMagick++-devel-7.1.2.10-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagick++-devel-7.1.2.10-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagick++-devel-7.1.2.10-1.1.ppc64le"
        },
        "product_reference": "libMagick++-devel-7.1.2.10-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagick++-devel-7.1.2.10-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagick++-devel-7.1.2.10-1.1.s390x"
        },
        "product_reference": "libMagick++-devel-7.1.2.10-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagick++-devel-7.1.2.10-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagick++-devel-7.1.2.10-1.1.x86_64"
        },
        "product_reference": "libMagick++-devel-7.1.2.10-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagick++-devel-32bit-7.1.2.10-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.10-1.1.aarch64"
        },
        "product_reference": "libMagick++-devel-32bit-7.1.2.10-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagick++-devel-32bit-7.1.2.10-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.10-1.1.ppc64le"
        },
        "product_reference": "libMagick++-devel-32bit-7.1.2.10-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagick++-devel-32bit-7.1.2.10-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.10-1.1.s390x"
        },
        "product_reference": "libMagick++-devel-32bit-7.1.2.10-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagick++-devel-32bit-7.1.2.10-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.10-1.1.x86_64"
        },
        "product_reference": "libMagick++-devel-32bit-7.1.2.10-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.aarch64"
        },
        "product_reference": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.ppc64le"
        },
        "product_reference": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.s390x"
        },
        "product_reference": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.x86_64"
        },
        "product_reference": "libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.aarch64"
        },
        "product_reference": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.ppc64le"
        },
        "product_reference": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.s390x"
        },
        "product_reference": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.x86_64"
        },
        "product_reference": "libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.aarch64"
        },
        "product_reference": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.ppc64le"
        },
        "product_reference": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.s390x"
        },
        "product_reference": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.x86_64"
        },
        "product_reference": "libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.aarch64"
        },
        "product_reference": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.ppc64le"
        },
        "product_reference": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.s390x"
        },
        "product_reference": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.x86_64"
        },
        "product_reference": "libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-PerlMagick-7.1.2.10-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.10-1.1.aarch64"
        },
        "product_reference": "perl-PerlMagick-7.1.2.10-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-PerlMagick-7.1.2.10-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.10-1.1.ppc64le"
        },
        "product_reference": "perl-PerlMagick-7.1.2.10-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-PerlMagick-7.1.2.10-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.10-1.1.s390x"
        },
        "product_reference": "perl-PerlMagick-7.1.2.10-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "perl-PerlMagick-7.1.2.10-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.10-1.1.x86_64"
        },
        "product_reference": "perl-PerlMagick-7.1.2.10-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-65955",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-65955"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-9 and 6.9.13-34, there is a vulnerability in ImageMagick\u0027s Magick++ layer that manifests when Options::fontFamily is invoked with an empty string. Clearing a font family calls RelinquishMagickMemory on _drawInfo-\u003efont, freeing the font string but leaving _drawInfo-\u003efont pointing to freed memory while _drawInfo-\u003efamily is set to that (now-invalid) pointer. Any later cleanup or reuse of _drawInfo-\u003efont re-frees or dereferences dangling memory. DestroyDrawInfo and other setters (Options::font, Image::font) assume _drawInfo-\u003efont remains valid, so destruction or subsequent updates trigger crashes or heap corruption. This vulnerability is fixed in 7.1.2-9 and 6.9.13-34.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:ImageMagick-7.1.2.10-1.1.aarch64",
          "openSUSE Tumbleweed:ImageMagick-7.1.2.10-1.1.ppc64le",
          "openSUSE Tumbleweed:ImageMagick-7.1.2.10-1.1.s390x",
          "openSUSE Tumbleweed:ImageMagick-7.1.2.10-1.1.x86_64",
          "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.10-1.1.aarch64",
          "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.10-1.1.ppc64le",
          "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.10-1.1.s390x",
          "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.10-1.1.x86_64",
          "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.10-1.1.aarch64",
          "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.10-1.1.ppc64le",
          "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.10-1.1.s390x",
          "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.10-1.1.x86_64",
          "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.10-1.1.aarch64",
          "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.10-1.1.ppc64le",
          "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.10-1.1.s390x",
          "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.10-1.1.x86_64",
          "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.10-1.1.aarch64",
          "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.10-1.1.ppc64le",
          "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.10-1.1.s390x",
          "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.10-1.1.x86_64",
          "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.10-1.1.aarch64",
          "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.10-1.1.ppc64le",
          "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.10-1.1.s390x",
          "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.10-1.1.x86_64",
          "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.aarch64",
          "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.ppc64le",
          "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.s390x",
          "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.x86_64",
          "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.10-1.1.aarch64",
          "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.10-1.1.ppc64le",
          "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.10-1.1.s390x",
          "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.10-1.1.x86_64",
          "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.10-1.1.aarch64",
          "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.10-1.1.ppc64le",
          "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.10-1.1.s390x",
          "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.10-1.1.x86_64",
          "openSUSE Tumbleweed:libMagick++-devel-7.1.2.10-1.1.aarch64",
          "openSUSE Tumbleweed:libMagick++-devel-7.1.2.10-1.1.ppc64le",
          "openSUSE Tumbleweed:libMagick++-devel-7.1.2.10-1.1.s390x",
          "openSUSE Tumbleweed:libMagick++-devel-7.1.2.10-1.1.x86_64",
          "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.aarch64",
          "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.ppc64le",
          "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.s390x",
          "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.x86_64",
          "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.aarch64",
          "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.ppc64le",
          "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.s390x",
          "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.x86_64",
          "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.aarch64",
          "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.ppc64le",
          "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.s390x",
          "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.x86_64",
          "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.aarch64",
          "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.ppc64le",
          "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.s390x",
          "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.x86_64",
          "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.10-1.1.aarch64",
          "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.10-1.1.ppc64le",
          "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.10-1.1.s390x",
          "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.10-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-65955",
          "url": "https://www.suse.com/security/cve/CVE-2025-65955"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1254435 for CVE-2025-65955",
          "url": "https://bugzilla.suse.com/1254435"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:ImageMagick-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:ImageMagick-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:ImageMagick-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:ImageMagick-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:libMagick++-devel-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:libMagick++-devel-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:libMagick++-devel-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:libMagick++-devel-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.10-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:ImageMagick-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:ImageMagick-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:ImageMagick-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:ImageMagick-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:ImageMagick-devel-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:ImageMagick-doc-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:ImageMagick-extra-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:libMagick++-devel-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:libMagick++-devel-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:libMagick++-devel-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:libMagick++-devel-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.10-1.1.x86_64",
            "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.10-1.1.aarch64",
            "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.10-1.1.ppc64le",
            "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.10-1.1.s390x",
            "openSUSE Tumbleweed:perl-PerlMagick-7.1.2.10-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-12-12T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2025-65955"
    }
  ]
}

ghsa-q3hc-j9x5-mp9m

Vulnerability from github

Published

2025-12-03 16:25

Modified

2025-12-11 20:53

Severity ?

4.9 (Medium) - CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Summary

Withdrawn Advisory: ImageMagick has a use-after-free/double-free risk in Options::fontFamily when clearing family

Details

Withdrawn Advisory

This advisory has been withdrawn because it does not affect the ImageMagick project's NuGet packages.

Original Description

We believe that we have discovered a potential security vulnerability in ImageMagick’s Magick++ layer that manifests when Options::fontFamily is invoked with an empty string.

Vulnerability Details - Clearing a font family calls RelinquishMagickMemory on _drawInfo->font, freeing the font string but leaving _drawInfo->font pointing to freed memory while _drawInfo->family is set to that (now-invalid) pointer. Any later cleanup or reuse of _drawInfo->font re-frees or dereferences dangling memory. - DestroyDrawInfo and other setters (Options::font, Image::font) assume _drawInfo->font remains valid, so destruction or subsequent updates trigger crashes or heap corruption.

cpp if (family_.length() == 0) { _drawInfo->family=(char *) RelinquishMagickMemory(_drawInfo->font); DestroyString(RemoveImageOption(imageInfo(),"family")); }

CWE-416 (Use After Free): _drawInfo->font is left dangling yet still reachable through the Options object.
CWE-415 (Double Free): DrawInfo teardown frees _drawInfo->font again, provoking allocator aborts.

Affected Versions - Introduced by commit 6409f34d637a34a1c643632aa849371ec8b3b5a8 (“Added fontFamily to the Image class of Magick++”, 2015-08-01, blame line 313). - Present in all releases that include that commit, at least ImageMagick 7.0.1-0 and later (likely late 6.9 builds with Magick++ font family support as well). Older releases without fontFamily are unaffected.

Command Line Triggerability This vulnerability cannot be triggered from the command line interface. The bug is specific to the Magick++ C++ API, specifically the Options::fontFamily() method. The command-line utilities (such as convert, magick, etc.) do not expose this particular code path, as they operate through different internal mechanisms that do not directly call Options::fontFamily() with an empty string in a way that would trigger the use-after-free condition.

Proposed Fix diff diff --git a/Magick++/lib/Options.cpp b/Magick++/lib/Options.cpp @@ void Magick::Options::fontFamily(const std::string &family_) - _drawInfo->family=(char *) RelinquishMagickMemory(_drawInfo->font); + _drawInfo->family=(char *) RelinquishMagickMemory(_drawInfo->family); This frees only the actual family string, leaving _drawInfo->font untouched. Optionally nulling _drawInfo->font when clearing font() itself maintains allocator hygiene.

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "Magick.NET-Q16-AnyCPU"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "14.9.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "Magick.NET-Q16-HDRI-AnyCPU"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "14.9.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "Magick.NET-Q16-HDRI-OpenMP-arm64"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "14.9.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "Magick.NET-Q16-HDRI-OpenMP-x64"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "14.9.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "Magick.NET-Q16-HDRI-arm64"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "14.9.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "Magick.NET-Q16-HDRI-x64"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "14.9.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "Magick.NET-Q16-HDRI-x86"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "14.9.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "Magick.NET-Q16-OpenMP-arm64"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "14.9.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "Magick.NET-Q16-OpenMP-x64"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "14.9.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "Magick.NET-Q16-arm64"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "14.9.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "Magick.NET-Q16-x64"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "14.9.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "Magick.NET-Q16-x86"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "14.9.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "Magick.NET-Q8-AnyCPU"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "14.9.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "Magick.NET-Q8-OpenMP-arm64"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "14.9.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "Magick.NET-Q8-OpenMP-x64"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "14.9.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "Magick.NET-Q8-arm64"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "14.9.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "Magick.NET-Q8-x64"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "14.9.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "NuGet",
        "name": "Magick.NET-Q8-x86"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "14.9.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2025-65955"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-415"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2025-12-03T16:25:15Z",
    "nvd_published_at": "2025-12-02T23:15:45Z",
    "severity": "MODERATE"
  },
  "details": "## Withdrawn Advisory\nThis advisory has been withdrawn because it does not affect the ImageMagick project\u0027s NuGet packages.\n\n### Original Description\nWe believe that we have discovered a potential security vulnerability in ImageMagick\u2019s Magick++ layer that manifests when `Options::fontFamily` is invoked with an empty string.\n\n**Vulnerability Details**\n- Clearing a font family calls `RelinquishMagickMemory` on `_drawInfo-\u003efont`, freeing the font string but leaving `_drawInfo-\u003efont` pointing to freed memory while `_drawInfo-\u003efamily` is set to that (now-invalid) pointer. Any later cleanup or reuse of `_drawInfo-\u003efont` re-frees or dereferences dangling memory.\n- `DestroyDrawInfo` and other setters (`Options::font`, `Image::font`) assume `_drawInfo-\u003efont` remains valid, so destruction or subsequent updates trigger crashes or heap corruption.\n\n```cpp\nif (family_.length() == 0)\n  {\n    _drawInfo-\u003efamily=(char *) RelinquishMagickMemory(_drawInfo-\u003efont);\n    DestroyString(RemoveImageOption(imageInfo(),\"family\"));\n  }\n```\n\n- **CWE-416 (Use After Free):** `_drawInfo-\u003efont` is left dangling yet still reachable through the Options object.\n- **CWE-415 (Double Free):** DrawInfo teardown frees `_drawInfo-\u003efont` again, provoking allocator aborts.\n\n**Affected Versions**\n- Introduced by commit `6409f34d637a34a1c643632aa849371ec8b3b5a8` (\u201cAdded fontFamily to the Image class of Magick++\u201d, 2015-08-01, blame line 313).\n- Present in all releases that include that commit, at least ImageMagick 7.0.1-0 and later (likely late 6.9 builds with Magick++ font family support as well). Older releases without `fontFamily` are unaffected.\n\n**Command Line Triggerability**\nThis vulnerability cannot be triggered from the command line interface. The bug is specific to the Magick++ C++ API, specifically the `Options::fontFamily()` method. The command-line utilities (such as `convert`, `magick`, etc.) do not expose this particular code path, as they operate through different internal mechanisms that do not directly call `Options::fontFamily()` with an empty string in a way that would trigger the use-after-free condition.\n\n**Proposed Fix**\n```diff\ndiff --git a/Magick++/lib/Options.cpp b/Magick++/lib/Options.cpp\n@@ void Magick::Options::fontFamily(const std::string \u0026family_)\n-      _drawInfo-\u003efamily=(char *) RelinquishMagickMemory(_drawInfo-\u003efont);\n+      _drawInfo-\u003efamily=(char *) RelinquishMagickMemory(_drawInfo-\u003efamily);\n```\nThis frees only the actual family string, leaving `_drawInfo-\u003efont` untouched. Optionally nulling `_drawInfo-\u003efont` when clearing `font()` itself maintains allocator hygiene.",
  "id": "GHSA-q3hc-j9x5-mp9m",
  "modified": "2025-12-11T20:53:33Z",
  "published": "2025-12-03T16:25:15Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-q3hc-j9x5-mp9m"
    },
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-65955"
    },
    {
      "type": "WEB",
      "url": "https://github.com/ImageMagick/ImageMagick/commit/6409f34d637a34a1c643632aa849371ec8b3b5a8"
    },
    {
      "type": "WEB",
      "url": "https://github.com/ImageMagick/ImageMagick/commit/6f81eb15f822ad86e8255be75efad6f9762c32f8"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/ImageMagick/ImageMagick"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
      "type": "CVSS_V3"
    }
  ],
  "summary": "Withdrawn Advisory: ImageMagick has a use-after-free/double-free risk in Options::fontFamily when clearing family",
  "withdrawn": "2025-12-11T20:53:33Z"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2025-65955 (GCVE-0-2025-65955)

Vulnerability from cvelistv5

fkie_cve-2025-65955

Vulnerability from fkie_nvd

opensuse-su-2025:15816-1

Vulnerability from csaf_opensuse

ghsa-q3hc-j9x5-mp9m

Vulnerability from github

Withdrawn Advisory

Original Description

Tags

Sightings

Nomenclature