Описание
Security update for GraphicsMagick
This update for GraphicsMagick fixes the following issues:
- CVE-2025-32460: Fixed a heap-based buffer over-read in ReadJXLImage. (bsc#1241150)
Список пакетов
SUSE Linux Enterprise Module for Package Hub 15 SP6
GraphicsMagick-1.3.42-150600.3.7.1
GraphicsMagick-devel-1.3.42-150600.3.7.1
libGraphicsMagick++-Q16-12-1.3.42-150600.3.7.1
libGraphicsMagick++-devel-1.3.42-150600.3.7.1
libGraphicsMagick-Q16-3-1.3.42-150600.3.7.1
libGraphicsMagick3-config-1.3.42-150600.3.7.1
libGraphicsMagickWand-Q16-2-1.3.42-150600.3.7.1
perl-GraphicsMagick-1.3.42-150600.3.7.1
openSUSE Leap 15.6
GraphicsMagick-1.3.42-150600.3.7.1
GraphicsMagick-devel-1.3.42-150600.3.7.1
libGraphicsMagick++-Q16-12-1.3.42-150600.3.7.1
libGraphicsMagick++-devel-1.3.42-150600.3.7.1
libGraphicsMagick-Q16-3-1.3.42-150600.3.7.1
libGraphicsMagick3-config-1.3.42-150600.3.7.1
libGraphicsMagickWand-Q16-2-1.3.42-150600.3.7.1
perl-GraphicsMagick-1.3.42-150600.3.7.1
Ссылки
- Link for SUSE-SU-2025:1349-1
- E-Mail link for SUSE-SU-2025:1349-1
- SUSE Security Ratings
- SUSE Bug 1241150
- SUSE CVE CVE-2025-32460 page
Описание
GraphicsMagick before 8e56520 has a heap-based buffer over-read in ReadJXLImage in coders/jxl.c, related to an ImportViewPixelArea call.
Затронутые продукты
SUSE Linux Enterprise Module for Package Hub 15 SP6:GraphicsMagick-1.3.42-150600.3.7.1
SUSE Linux Enterprise Module for Package Hub 15 SP6:GraphicsMagick-devel-1.3.42-150600.3.7.1
SUSE Linux Enterprise Module for Package Hub 15 SP6:libGraphicsMagick++-Q16-12-1.3.42-150600.3.7.1
SUSE Linux Enterprise Module for Package Hub 15 SP6:libGraphicsMagick++-devel-1.3.42-150600.3.7.1
Ссылки
- CVE-2025-32460
- SUSE Bug 1241150