ΠΠΏΠΈΡΠ°Π½ΠΈΠ΅
Security update for ImageMagick
This update for ImageMagick fixes the following issues:
- CVE-2025-68618: read a malicious SVG file may result in a DoS attack (bsc#1255821).
- CVE-2025-68950: check for circular references in mvg files may lead to stack overflow (bsc#1255822).
Π‘ΠΏΠΈΡΠΎΠΊ ΠΏΠ°ΠΊΠ΅ΡΠΎΠ²
SUSE Linux Enterprise Module for Desktop Applications 15 SP7
ImageMagick-config-7-upstream-7.1.0.9-150400.6.61.1
Π‘ΡΡΠ»ΠΊΠΈ
- Link for SUSE-SU-2026:0072-1
- E-Mail link for SUSE-SU-2026:0072-1
- SUSE Security Ratings
- SUSE Bug 1255821
- SUSE Bug 1255822
- SUSE CVE CVE-2025-68618 page
- SUSE CVE CVE-2025-68950 page
ΠΠΏΠΈΡΠ°Π½ΠΈΠ΅
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, using Magick to read a malicious SVG file resulted in a DoS attack. Version 7.1.2-12 fixes the issue.
ΠΠ°ΡΡΠΎΠ½ΡΡΡΠ΅ ΠΏΡΠΎΠ΄ΡΠΊΡΡ
SUSE Linux Enterprise Module for Desktop Applications 15 SP7:ImageMagick-config-7-upstream-7.1.0.9-150400.6.61.1
Π‘ΡΡΠ»ΠΊΠΈ
- CVE-2025-68618
- SUSE Bug 1255821
ΠΠΏΠΈΡΠ°Π½ΠΈΠ΅
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, Magick fails to check for circular references between two MVGs, leading to a stack overflow. This is a DoS vulnerability, and any situation that allows reading the mvg file will be affected. Version 7.1.2-12 fixes the issue.
ΠΠ°ΡΡΠΎΠ½ΡΡΡΠ΅ ΠΏΡΠΎΠ΄ΡΠΊΡΡ
SUSE Linux Enterprise Module for Desktop Applications 15 SP7:ImageMagick-config-7-upstream-7.1.0.9-150400.6.61.1
Π‘ΡΡΠ»ΠΊΠΈ
- CVE-2025-68950
- SUSE Bug 1255822