19 matches found
SUSE CVE-2025-57807
ImageMagick is free and open-source software used for editing and manipulating digital images. ImageMagick versions lower than 14.8.2 include insecure functions: SeekBlob, which permits advancing the stream offset beyond the current end without increasing capacity, and WriteBlob, which then expan...
MiracleLinux 7 : ImageMagick-6.9.10.68-7.0.5.el7.AXS7 (AXSA:2025-10911:02)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10911:02 advisory. CVE-2025-53101: fix heap OOB write in BlobStream CVE-2025-57807: fix stack overflow through vsnprintf CVE-2025-55154: fix integer overflows in MNG...
SUSE: Security Advisory (SUSE-SU-2025:21211-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for ImageMagick (important)
openSUSE security update: security update for imagemagick ------------------------------------------------------------- Announcement ID: openSUSE-SU-2025:20162-1 Rating: important References: bsc1248767 bsc1248780 bsc1248784 bsc1249362 bsc1252282 bsc1252749 Cross-References: CVE-2025-55212...
SUSE SLED15 / SLES15 Security Update : ImageMagick (SUSE-SU-2025:03616-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:03616-1 advisory. - CVE-2025-57807: heap out-of-bounds?write?can lead to memory corruption bsc1249362. Tenable has extracted the precedi...
openSUSE Security Advisory (SUSE-SU-2025:03509-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for ImageMagick
This update for ImageMagick fixes the following issues: CVE-2025-57807: heap out-of-bounds write can lead to memory corruption bsc1249362. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...
SUSE-SU-2025:03510-1 Security update for ImageMagick
This update for ImageMagick fixes the following issues: - CVE-2025-57807: heap out-of-bounds�write�can lead to memory corruption bsc1249362...
Security update for ImageMagick
This update for ImageMagick fixes the following issues: CVE-2025-57807: heap out-of-bounds write can lead to memory corruption bsc1249362. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...
Amazon Linux 2023 : ImageMagick, ImageMagick-c++, ImageMagick-c++-devel (ALAS2023-2025-1206)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1206 advisory. ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2, passing a geometry string containing only a colon : to...
Amazon Linux 2 : ImageMagick, --advisory ALAS2-2025-3009 (ALAS-2025-3009)
The version of ImageMagick installed on the remote host is prior to 6.9.10.97-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3009 advisory. ImageMagick is free and open-source software used for editing and manipulating digital images. ImageMagick versions lower...
CLSA-2025-1758704282 Fix CVE(s): CVE-2025-57807
SECURITY UPDATE: heap out-of-bounds write in BlobStream WriteBlob - debian/patches/CVE-2025-57807.patch: enforce extent ≥ offset + length when forward-seeking before writes in MagickCore/blob.c - CVE-2025-57807...
CLSA-2025-1758635329 Fix CVE(s): CVE-2025-57807
SECURITY UPDATE: heap out-of-bounds write in BlobStream WriteBlob - debian/patches/CVE-2025-57807.patch: enforce extent ≥ offset + length when forward-seeking before writes in MagickCore/blob.c - CVE-2025-57807...
OESA-2025-2249 ImageMagick security update
Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...
OESA-2025-2246 ImageMagick security update
Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...
OESA-2025-2244 ImageMagick security update
Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...
[SECURITY] [DSA 5997-1] imagemagick security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5997-1 [email protected] https://www.debian.org/security/ Bastien Roucaries September 12, 2025 https://www.debian.org/security/faq -...
Debian dla-4297 : imagemagick - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4297 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4297-1 [email protected]...
Linux Distros Unpatched Vulnerability : CVE-2025-57807
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick is free and open-source software used for editing and manipulating digital images. ImageMagick versions lower than 14.8.2 include insecure functions...