Security update for ImageMagick

Announcement ID:	SUSE-SU-2026:0854-1
Release Date:	2026-03-09T15:34:51Z
Rating:	moderate
References:	bsc#1258748 bsc#1258757 bsc#1258763 bsc#1258765 bsc#1258769 bsc#1258770 bsc#1258780 bsc#1258786 bsc#1258790 bsc#1258791 bsc#1258792 bsc#1258805 bsc#1258810 bsc#1258821 bsc#1259017
Cross-References:	CVE-2026-24484 CVE-2026-24485 CVE-2026-25576 CVE-2026-25795 CVE-2026-25796 CVE-2026-25797 CVE-2026-25799 CVE-2026-25966 CVE-2026-25983 CVE-2026-25987 CVE-2026-25988 CVE-2026-26066 CVE-2026-26284 CVE-2026-26983 CVE-2026-27799
CVSS scores:	CVE-2026-24484 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2026-24484 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-24484 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-24485 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2026-24485 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2026-25576 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2026-25576 ( NVD ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2026-25576 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2026-25795 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVE-2026-25795 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-25795 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-25795 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2026-25796 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-25796 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-25796 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2026-25797 ( SUSE ): 5.7 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L CVE-2026-25797 ( NVD ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L CVE-2026-25797 ( NVD ): 5.7 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L CVE-2026-25799 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVE-2026-25799 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-25799 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-25799 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2026-25966 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N CVE-2026-25966 ( SUSE ): 5.9 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L CVE-2026-25966 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2026-25966 ( NVD ): 5.9 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L CVE-2026-25983 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVE-2026-25983 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-25983 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-25983 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2026-25987 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N CVE-2026-25987 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2026-25987 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2026-25987 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H CVE-2026-25988 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVE-2026-25988 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-25988 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2026-25988 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-26066 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2026-26066 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2026-26066 ( NVD ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2026-26066 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2026-26284 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N CVE-2026-26284 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L CVE-2026-26284 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L CVE-2026-26284 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H CVE-2026-26983 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVE-2026-26983 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-26983 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-27799 ( SUSE ): 2.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N CVE-2026-27799 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L CVE-2026-27799 ( NVD ): 4.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L CVE-2026-27799 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
Affected Products:	SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security SUSE Linux Enterprise Server for SAP Applications 12 SP5

An update that solves 15 vulnerabilities can now be installed.

Description:

This update for ImageMagick fixes the following issues:

• CVE-2026-24484: denial of service vulnerability via multi-layer nested MVG to SVG conversion (bsc#1258790).
• CVE-2026-24485: denial of service via malformed PCD file processing (bsc#1258791).
• CVE-2026-25576: Out of bounds read in multiple coders that read raw pixel data (bsc#1258748).
• CVE-2026-25795: Denial of Service due to NULL pointer dereference during temporary file creation failure (bsc#1258792).
• CVE-2026-25796: Memory leak of watermark Image object in ReadSTEGANOImage on multiple error/early-return paths (bsc#1258757).
• CVE-2026-25797: Code injection in various encoders (bsc#1258770).
• CVE-2026-25799: Division-by-Zero in YUV sampling factor validation leads to crash (bsc#1258786).
• CVE-2026-25966: Security Policy Bypass through config/policy-secure.xml via "fd handler" leads to stdin/stdout access (bsc#1258780).
• CVE-2026-25983: Denial of service via crafted MSL script (bsc#1258805).
• CVE-2026-25987: Memory disclosure and denial of service via crafted MAP files (bsc#1258821).
• CVE-2026-25988: Denial of Service due to memory leak in image processing (bsc#1258810).
• CVE-2026-26066: Infinite loop when writing IPTCTEXT leads to denial of service via crafted profile (bsc#1258769).
• CVE-2026-26284: Heap overflow in pcd decoder leads to out of bounds read (bsc#1258765).
• CVE-2026-26983: Invalid MSL <map> can result in a use after free (bsc#1258763).
• CVE-2026-27799: ImageMagick has a heap Buffer Over-read in its DJVU image format handler (bsc#1259017).

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

• SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security
  zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-854=1

Package List:

• SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64)
  • ImageMagick-config-6-upstream-6.8.8.1-71.231.1
  • libMagickWand-6_Q16-1-debuginfo-6.8.8.1-71.231.1
  • ImageMagick-debugsource-6.8.8.1-71.231.1
  • ImageMagick-debuginfo-6.8.8.1-71.231.1
  • libMagickWand-6_Q16-1-6.8.8.1-71.231.1
  • libMagickCore-6_Q16-1-6.8.8.1-71.231.1
  • libMagick++-devel-6.8.8.1-71.231.1
  • libMagickCore-6_Q16-1-debuginfo-6.8.8.1-71.231.1
  • ImageMagick-devel-6.8.8.1-71.231.1
  • ImageMagick-config-6-SUSE-6.8.8.1-71.231.1

References:

• https://www.suse.com/security/cve/CVE-2026-24484.html
• https://www.suse.com/security/cve/CVE-2026-24485.html
• https://www.suse.com/security/cve/CVE-2026-25576.html
• https://www.suse.com/security/cve/CVE-2026-25795.html
• https://www.suse.com/security/cve/CVE-2026-25796.html
• https://www.suse.com/security/cve/CVE-2026-25797.html
• https://www.suse.com/security/cve/CVE-2026-25799.html
• https://www.suse.com/security/cve/CVE-2026-25966.html
• https://www.suse.com/security/cve/CVE-2026-25983.html
• https://www.suse.com/security/cve/CVE-2026-25987.html
• https://www.suse.com/security/cve/CVE-2026-25988.html
• https://www.suse.com/security/cve/CVE-2026-26066.html
• https://www.suse.com/security/cve/CVE-2026-26284.html
• https://www.suse.com/security/cve/CVE-2026-26983.html
• https://www.suse.com/security/cve/CVE-2026-27799.html
• https://bugzilla.suse.com/show_bug.cgi?id=1258748
• https://bugzilla.suse.com/show_bug.cgi?id=1258757
• https://bugzilla.suse.com/show_bug.cgi?id=1258763
• https://bugzilla.suse.com/show_bug.cgi?id=1258765
• https://bugzilla.suse.com/show_bug.cgi?id=1258769
• https://bugzilla.suse.com/show_bug.cgi?id=1258770
• https://bugzilla.suse.com/show_bug.cgi?id=1258780
• https://bugzilla.suse.com/show_bug.cgi?id=1258786
• https://bugzilla.suse.com/show_bug.cgi?id=1258790
• https://bugzilla.suse.com/show_bug.cgi?id=1258791
• https://bugzilla.suse.com/show_bug.cgi?id=1258792
• https://bugzilla.suse.com/show_bug.cgi?id=1258805
• https://bugzilla.suse.com/show_bug.cgi?id=1258810
• https://bugzilla.suse.com/show_bug.cgi?id=1258821
• https://bugzilla.suse.com/show_bug.cgi?id=1259017