Описание
Security update for ImageMagick
This update for ImageMagick fixes the following issues:
- CVE-2025-43965: mishandling of image depth after SetQuantumFormat is used in MIFF image processing. (bsc#1241659)
- CVE-2025-46393: mishandling of packet_size leads to rendering of channels in arbitrary order in multispectral MIFF image processing. (bsc#1241658)
Список пакетов
SUSE Linux Enterprise Module for Desktop Applications 15 SP6
ImageMagick-7.1.1.21-150600.3.3.1
ImageMagick-config-7-SUSE-7.1.1.21-150600.3.3.1
ImageMagick-config-7-upstream-limited-7.1.1.21-150600.3.3.1
ImageMagick-config-7-upstream-open-7.1.1.21-150600.3.3.1
ImageMagick-config-7-upstream-secure-7.1.1.21-150600.3.3.1
ImageMagick-config-7-upstream-websafe-7.1.1.21-150600.3.3.1
ImageMagick-devel-7.1.1.21-150600.3.3.1
libMagick++-7_Q16HDRI5-7.1.1.21-150600.3.3.1
libMagick++-devel-7.1.1.21-150600.3.3.1
libMagickCore-7_Q16HDRI10-7.1.1.21-150600.3.3.1
libMagickWand-7_Q16HDRI10-7.1.1.21-150600.3.3.1
SUSE Linux Enterprise Module for Development Tools 15 SP6
perl-PerlMagick-7.1.1.21-150600.3.3.1
openSUSE Leap 15.6
ImageMagick-7.1.1.21-150600.3.3.1
ImageMagick-config-7-SUSE-7.1.1.21-150600.3.3.1
ImageMagick-config-7-upstream-limited-7.1.1.21-150600.3.3.1
ImageMagick-config-7-upstream-open-7.1.1.21-150600.3.3.1
ImageMagick-config-7-upstream-secure-7.1.1.21-150600.3.3.1
ImageMagick-config-7-upstream-websafe-7.1.1.21-150600.3.3.1
ImageMagick-devel-7.1.1.21-150600.3.3.1
ImageMagick-devel-32bit-7.1.1.21-150600.3.3.1
ImageMagick-doc-7.1.1.21-150600.3.3.1
ImageMagick-extra-7.1.1.21-150600.3.3.1
libMagick++-7_Q16HDRI5-7.1.1.21-150600.3.3.1
libMagick++-7_Q16HDRI5-32bit-7.1.1.21-150600.3.3.1
libMagick++-devel-7.1.1.21-150600.3.3.1
libMagick++-devel-32bit-7.1.1.21-150600.3.3.1
libMagickCore-7_Q16HDRI10-7.1.1.21-150600.3.3.1
libMagickCore-7_Q16HDRI10-32bit-7.1.1.21-150600.3.3.1
libMagickWand-7_Q16HDRI10-7.1.1.21-150600.3.3.1
libMagickWand-7_Q16HDRI10-32bit-7.1.1.21-150600.3.3.1
perl-PerlMagick-7.1.1.21-150600.3.3.1
Ссылки
- Link for SUSE-SU-2025:1488-1
- E-Mail link for SUSE-SU-2025:1488-1
- SUSE Security Ratings
- SUSE Bug 1241658
- SUSE Bug 1241659
- SUSE CVE CVE-2025-43965 page
- SUSE CVE CVE-2025-46393 page
Описание
In MIFF image processing in ImageMagick before 7.1.1-44, image depth is mishandled after SetQuantumFormat is used.
Затронутые продукты
SUSE Linux Enterprise Module for Desktop Applications 15 SP6:ImageMagick-7.1.1.21-150600.3.3.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP6:ImageMagick-config-7-SUSE-7.1.1.21-150600.3.3.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP6:ImageMagick-config-7-upstream-limited-7.1.1.21-150600.3.3.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP6:ImageMagick-config-7-upstream-open-7.1.1.21-150600.3.3.1
Ссылки
- CVE-2025-43965
- SUSE Bug 1241659
Описание
In multispectral MIFF image processing in ImageMagick before 7.1.1-44, packet_size is mishandled (related to the rendering of all channels in an arbitrary order).
Затронутые продукты
SUSE Linux Enterprise Module for Desktop Applications 15 SP6:ImageMagick-7.1.1.21-150600.3.3.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP6:ImageMagick-config-7-SUSE-7.1.1.21-150600.3.3.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP6:ImageMagick-config-7-upstream-limited-7.1.1.21-150600.3.3.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP6:ImageMagick-config-7-upstream-open-7.1.1.21-150600.3.3.1
Ссылки
- CVE-2025-46393
- SUSE Bug 1241658