ImageMagick-7.1.2.17-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2026:10386-1 Final 1 1 2026-03-18T00:00:00Z current 2026-03-18T00:00:00Z 2026-03-18T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z ImageMagick-7.1.2.17-1.1 on GA media These are all security issues fixed in the ImageMagick-7.1.2.17-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2026-10386 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2026-28493/ SUSE CVE CVE-2026-28493 page https://www.suse.com/security/cve/CVE-2026-28494/ SUSE CVE CVE-2026-28494 page https://www.suse.com/security/cve/CVE-2026-28686/ SUSE CVE CVE-2026-28686 page https://www.suse.com/security/cve/CVE-2026-28687/ SUSE CVE CVE-2026-28687 page https://www.suse.com/security/cve/CVE-2026-28688/ SUSE CVE CVE-2026-28688 page https://www.suse.com/security/cve/CVE-2026-28689/ SUSE CVE CVE-2026-28689 page https://www.suse.com/security/cve/CVE-2026-28690/ SUSE CVE CVE-2026-28690 page https://www.suse.com/security/cve/CVE-2026-28691/ SUSE CVE CVE-2026-28691 page https://www.suse.com/security/cve/CVE-2026-28692/ SUSE CVE CVE-2026-28692 page https://www.suse.com/security/cve/CVE-2026-28693/ SUSE CVE CVE-2026-28693 page https://www.suse.com/security/cve/CVE-2026-30883/ SUSE CVE CVE-2026-30883 page https://www.suse.com/security/cve/CVE-2026-30929/ SUSE CVE CVE-2026-30929 page https://www.suse.com/security/cve/CVE-2026-30931/ SUSE CVE CVE-2026-30931 page https://www.suse.com/security/cve/CVE-2026-30935/ SUSE CVE CVE-2026-30935 page https://www.suse.com/security/cve/CVE-2026-30936/ SUSE CVE CVE-2026-30936 page https://www.suse.com/security/cve/CVE-2026-30937/ SUSE CVE CVE-2026-30937 page https://www.suse.com/security/cve/CVE-2026-31853/ SUSE CVE CVE-2026-31853 page https://www.suse.com/security/cve/CVE-2026-32259/ SUSE CVE CVE-2026-32259 page openSUSE Tumbleweed ImageMagick-7.1.2.17-1.1 ImageMagick-config-7-SUSE-7.1.2.17-1.1 ImageMagick-devel-7.1.2.17-1.1 ImageMagick-devel-32bit-7.1.2.17-1.1 ImageMagick-doc-7.1.2.17-1.1 ImageMagick-extra-7.1.2.17-1.1 libMagick++-7_Q16HDRI5-7.1.2.17-1.1 libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 libMagick++-devel-7.1.2.17-1.1 libMagick++-devel-32bit-7.1.2.17-1.1 libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 perl-PerlMagick-7.1.2.17-1.1 ImageMagick-7.1.2.17-1.1 as a component of openSUSE Tumbleweed ImageMagick-config-7-SUSE-7.1.2.17-1.1 as a component of openSUSE Tumbleweed ImageMagick-devel-7.1.2.17-1.1 as a component of openSUSE Tumbleweed ImageMagick-devel-32bit-7.1.2.17-1.1 as a component of openSUSE Tumbleweed ImageMagick-doc-7.1.2.17-1.1 as a component of openSUSE Tumbleweed ImageMagick-extra-7.1.2.17-1.1 as a component of openSUSE Tumbleweed libMagick++-7_Q16HDRI5-7.1.2.17-1.1 as a component of openSUSE Tumbleweed libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 as a component of openSUSE Tumbleweed libMagick++-devel-7.1.2.17-1.1 as a component of openSUSE Tumbleweed libMagick++-devel-32bit-7.1.2.17-1.1 as a component of openSUSE Tumbleweed libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 as a component of openSUSE Tumbleweed libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 as a component of openSUSE Tumbleweed libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 as a component of openSUSE Tumbleweed libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 as a component of openSUSE Tumbleweed perl-PerlMagick-7.1.2.17-1.1 as a component of openSUSE Tumbleweed ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, an integer overflow vulnerability exists in the SIXEL decoer. The vulnerability allows an attacker to perform an out of bounds via a specially crafted image. This vulnerability is fixed in 7.1.2-16. CVE-2026-28493 openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-28493.html CVE-2026-28493 https://bugzilla.suse.com/1259446 SUSE Bug 1259446 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow exists in ImageMagick's morphology kernel parsing functions. User-controlled kernel strings exceeding a buffer are copied into fixed-size stack buffers via memcpy without bounds checking, resulting in stack corruption. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41. CVE-2026-28494 openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-28494.html CVE-2026-28494 https://bugzilla.suse.com/1259447 SUSE Bug 1259447 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, A heap-buffer-overflow vulnerability exists in the PCL encode due to an undersized output buffer allocation. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41. CVE-2026-28686 openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-28686.html CVE-2026-28686 https://bugzilla.suse.com/1259448 SUSE Bug 1259448 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap use-after-free vulnerability in ImageMagick's MSL decoder allows an attacker to trigger access to freed memory by crafting an MSL file. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41. CVE-2026-28687 openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-28687.html CVE-2026-28687 https://bugzilla.suse.com/1259450 SUSE Bug 1259450 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap-use-after-free vulnerability exists in the MSL encoder, where a cloned image is destroyed twice. The MSL coder does not support writing MSL so the write capability has been removed. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41. CVE-2026-28688 openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-28688.html CVE-2026-28688 https://bugzilla.suse.com/1259451 SUSE Bug 1259451 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, domain="path" authorization is checked before final file open/use. A symlink swap between check-time and use-time bypasses policy-denied read/write. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41. CVE-2026-28689 openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-28689.html CVE-2026-28689 https://bugzilla.suse.com/1259452 SUSE Bug 1259452 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow vulnerability exists in the MNG encoder. There is a bounds checks missing that could corrupting the stack with attacker-controlled data. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41. CVE-2026-28690 openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-28690.html CVE-2026-28690 https://bugzilla.suse.com/1259456 SUSE Bug 1259456 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an uninitialized pointer dereference vulnerability exists in the JBIG decoder due to a missing check. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41. CVE-2026-28691 openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-28691.html CVE-2026-28691 https://bugzilla.suse.com/1259455 SUSE Bug 1259455 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, MAT decoder uses 32-bit arithmetic due to incorrect parenthesization resulting in a heap over-read. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41. CVE-2026-28692 openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-28692.html CVE-2026-28692 https://bugzilla.suse.com/1259457 SUSE Bug 1259457 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an integer overflow in DIB coder can result in out of bounds read or write. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41. CVE-2026-28693 openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-28693.html CVE-2026-28693 https://bugzilla.suse.com/1259466 SUSE Bug 1259466 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an extremely large image profile could result in a heap overflow when encoding a PNG image. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41. CVE-2026-30883 openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-30883.html CVE-2026-30883 https://bugzilla.suse.com/1259467 SUSE Bug 1259467 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, MagnifyImage uses a fixed-size stack buffer. When using a specific image it is possible to overflow this buffer and corrupt the stack. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41. CVE-2026-30929 openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-30929.html CVE-2026-30929 https://bugzilla.suse.com/1259468 SUSE Bug 1259468 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, a heap-based buffer overflow in the UHDR encoder can happen due to truncation of a value and it would allow an out of bounds write. This vulnerability is fixed in 7.1.2-16. CVE-2026-30931 openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-30931.html CVE-2026-30931 https://bugzilla.suse.com/1259469 SUSE Bug 1259469 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, BilateralBlurImage contains a heap buffer over-read caused by an incorrect conversion. When processing a crafted image with the -bilateral-blur operation an out of bounds read can occur. This vulnerability is fixed in 7.1.2-16. CVE-2026-30935 openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-30935.html CVE-2026-30935 https://bugzilla.suse.com/1259497 SUSE Bug 1259497 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a crafted image could cause an out of bounds heap write inside the WaveletDenoiseImage method. When processing a crafted image with the -wavelet-denoise operation an out of bounds write can occur. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41. CVE-2026-30936 openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-30936.html CVE-2026-30936 https://bugzilla.suse.com/1259464 SUSE Bug 1259464 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a 32-bit unsigned integer overflow in the XWD (X Windows) encoder can cause an undersized heap buffer allocation. When writing a extremely large image an out of bounds heap write can occur. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41. CVE-2026-30937 openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-30937.html CVE-2026-30937 https://bugzilla.suse.com/1259463 SUSE Bug 1259463 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-16 and 6.9.13-41, an overflow on 32-bit systems can cause a crash in the SFW decoder when processing extremely large images. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41. CVE-2026-31853 openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-31853.html CVE-2026-31853 https://bugzilla.suse.com/1259528 SUSE Bug 1259528 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-16 and 6.9.13-41, when a memory allocation fails in the sixel encoder it would be possible to write past the end of a buffer on the stack. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41. CVE-2026-32259 openSUSE Tumbleweed:ImageMagick-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-config-7-SUSE-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-devel-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-doc-7.1.2.17-1.1 openSUSE Tumbleweed:ImageMagick-extra-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-7_Q16HDRI5-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagick++-devel-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickCore-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-32bit-7.1.2.17-1.1 openSUSE Tumbleweed:libMagickWand-7_Q16HDRI10-7.1.2.17-1.1 openSUSE Tumbleweed:perl-PerlMagick-7.1.2.17-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-32259.html CVE-2026-32259 https://bugzilla.suse.com/1259612 SUSE Bug 1259612