UBUNTU-CVE-2026-23952

ImageMagick is free and open-source software used for editing and manipulating digital images. Versions 14.10.1 and below have a NULL pointer dereference vulnerability in the MSL Magick Scripting Language parser when processing tags before images are loaded. This can lead to DoS attack due to...

CVE-2026-23952

ImageMagick is free and open-source software used for editing and manipulating digital images. Versions 14.10.1 and below have a NULL pointer dereference vulnerability in the MSL Magick Scripting Language parser when processing tags before images are loaded. This can lead to DoS attack due to...

EUVD-2026-3699

ImageMagick is free and open-source software used for editing and manipulating digital images. Versions 14.10.1 and below have a NULL pointer dereference vulnerability in the MSL Magick Scripting Language parser when processing tags before images are loaded. This can lead to DoS attack due to...

CVE-2026-23952

ImageMagick has a NULL pointer dereference in the MSL parser when processing tags before any image loads (CVE-2026-23952). Affected: ImageMagick versions 14.10.1 and earlier. Impact: potential DoS through assertion failure (debug builds) or NULL pointer dereference (release). Mitigation: upgrade...

SUSE CVE-2025-57155

NULL pointer dereference in the daapreplygroups function in src/httpddaap.c in owntone-server through commit 5e6f19a newer commit after version 28.2 allows remote attackers to cause a Denial of Service...

SUSE CVE-2025-63648

A NULL pointer dereference in the dacpreplyplayqueueeditmove function src/httpddacp.c of owntone-server commit b7e385f allows attackers to cause a Denial of Service DoS via sending a crafted DACP request to the server...

SUSE CVE-2026-22976

In the Linux kernel, the following vulnerability has been resolved: net/sched: schqfq: Fix NULL deref when deactivating inactive aggregate in qfqreset qfqclass-leafqdisc-q.qlen 0 does not imply that the class itself is active. Two qfqclass objects may point to the same leafqdisc. This happens whe...

Azure Linux 3.0 Security Update: openjpeg2 (CVE-2020-27842)

The version of openjpeg2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2020-27842 advisory. - There's a flaw in openjpeg's t2 encoder in versions prior to 2.4.0. An attacker who is able to provide...

Azure Linux 3.0 Security Update: kernel (CVE-2025-21658)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-21658 advisory. - In the Linux kernel, the following vulnerability has been resolved: btrfs: avoid NULL pointer dereference if...

Azure Linux 3.0 Security Update: kernel (CVE-2024-43833)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43833 advisory. - In the Linux kernel, the following vulnerability has been resolved: media: v4l: async: Fix NULL pointer...

Azure Linux 3.0 Security Update: kernel (CVE-2025-38135)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38135 advisory. - In the Linux kernel, the following vulnerability has been resolved: serial: Fix potential null-ptr-deref in...

Azure Linux 3.0 Security Update: kernel (CVE-2025-38075)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38075 advisory. - In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix timeout on...

Azure Linux 3.0 Security Update: kernel (CVE-2024-41084)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-41084 advisory. - In the Linux kernel, the following vulnerability has been resolved: cxl/region: Avoid null pointer dereferen...

Azure Linux 3.0 Security Update: kernel (CVE-2025-38181)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38181 advisory. - In the Linux kernel, the following vulnerability has been resolved: calipso: Fix null-ptr-deref in...

Azure Linux 3.0 Security Update: kernel (CVE-2024-41053)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-41053 advisory. - In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix ufshcdabortone raci...

Azure Linux 3.0 Security Update: moby-engine (CVE-2024-36620)

The version of moby-engine installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-36620 advisory. - moby v25.0.0 - v26.0.2 is vulnerable to NULL Pointer Dereference via daemon/images/imagehistory.go...

Azure Linux 3.0 Security Update: iniparser (CVE-2023-33461)

The version of iniparser installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-33461 advisory. - iniparser v4.1 is vulnerable to NULL Pointer Dereference in function iniparsergetlongint which misses che...

Azure Linux 3.0 Security Update: libarchive (CVE-2025-1632)

The version of libarchive installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-1632 advisory. - A vulnerability was found in libarchive up to 3.7.7. It has been classified as problematic. This affects...

ImageMagick code vulnerabilities

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It can read, convert, and write images in various formats. Versions of ImageMagick prior to 14.10.1 have code vulnerabilities that stem from issues with the MSL parser, particularly when handling...

Azure Linux 3.0 Security Update: kernel (CVE-2024-24860)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-24860 advisory. - A race condition was found in the Linux kernel's bluetooth device driver in min,maxkeysizeset function. This...