Security update for ImageMagick SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2016:2671-1 Final 1 1 2016-10-28T15:35:15Z current 2016-10-28T15:35:15Z 2016-10-28T15:35:15Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for ImageMagick This update for ImageMagick fixes the following issues: - CVE-2016-8684: Mismatch between real filesize and header values (bsc#1005123) - CVE-2016-8683: Check that filesize is reasonable compared to the header value (bsc#1005127) - CVE-2016-8682: Stack-buffer read overflow while reading SCT header (bsc#1005125) - CVE-2016-8677: Memory allocation failure in AcquireQuantumPixels (bsc#1005328) - CVE-2016-7996, CVE-2016-7997: WPG Reader Issues (bsc#1003629) - CVE-2016-7800: 8BIM/8BIMW unsigned underflow leads to heap overflow (bsc#1002422) - CVE-2016-7799: Mogrify global buffer overflow (bsc#1002421) - CVE-2016-7540: Writing to RGF format aborts (bsc#1000394) - CVE-2016-7539: Potential DOS by not releasing memory (bsc#1000715) - CVE-2016-7538: SIGABRT for corrupted pdb file (bsc#1000712) - CVE-2016-7537: Out of bound access for corrupted pdb file (bsc#1000711) - CVE-2016-7536: SEGV reported in corrupted profile handling (bsc#1000710) - CVE-2016-7535: Out of bound access for corrupted psd file (bsc#1000709) - CVE-2016-7534: Out of bound access in generic decoder (bsc#1000708) - CVE-2016-7533: Wpg file out of bound for corrupted file (bsc#1000707) - CVE-2016-7532: Fix handling of corrupted psd file (bsc#1000706) - CVE-2016-7531: Pbd file out of bound access (bsc#1000704) - CVE-2016-7530: Out of bound in quantum handling (bsc#1000703) - CVE-2016-7529: Out of bound in quantum handling (bsc#1000399) - CVE-2016-7528: Out of bound access in xcf file coder (bsc#1000434) - CVE-2016-7527: Out of bound access in wpg file coder: (bsc#1000436) - CVE-2016-7525: Heap buffer overflow in psd file coder (bsc#1000701) - CVE-2016-7524: AddressSanitizer:heap-buffer-overflow READ of size 1 in meta.c:465 (bsc#1000700) - CVE-2016-7523: AddressSanitizer:heap-buffer-overflow READ of size 1 meta.c:496 (bsc#1000699) - CVE-2016-7522: Out of bound access for malformed psd file (bsc#1000698) - CVE-2016-7521: Heap buffer overflow in psd file handling (bsc#1000697) - CVE-2016-7520: Heap overflow in hdr file handling (bsc#1000696) - CVE-2016-7519: Out-of-bounds read in coders/rle.c (bsc#1000695) - CVE-2016-7518: Out-of-bounds read in coders/sun.c (bsc#1000694) - CVE-2016-7517: Out-of-bounds read in coders/pict.c (bsc#1000693) - CVE-2016-7516: Out of bounds problem in rle, pict, viff and sun files (bsc#1000692) - CVE-2016-7515: Rle file handling for corrupted file (bsc#1000689) - CVE-2016-7514: Out-of-bounds read in coders/psd.c (bsc#1000688) - CVE-2016-7513: Off-by-one error leading to segfault (bsc#1000686) - CVE-2016-7101: SGI Coder Out-Of-Bounds Read Vulnerability (bsc#1001221) - CVE-2016-6823: BMP Coder Out-Of-Bounds Write Vulnerability (bsc#1001066) - CVE-2015-8959: DOS due to corrupted DDS files (bsc#1000713) - CVE-2015-8958: Potential DOS in sun file handling due to malformed files (bsc#1000691) - CVE-2015-8957: Buffer overflow in sun file handling (bsc#1000690) - CVE-2014-9907: DOS due to corrupted DDS files (bsc#1000714) - Divide by zero in WriteTIFFImage (bsc#1002206) - Buffer overflows in SIXEL, PDB, MAP, and TIFF coders (bsc#1002209) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html E-Mail link for openSUSE-SU-2016:2671-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE 13.2 ImageMagick-6.8.9.8-34.1 ImageMagick-debuginfo-6.8.9.8-34.1 ImageMagick-debugsource-6.8.9.8-34.1 ImageMagick-devel-6.8.9.8-34.1 ImageMagick-devel-32bit-6.8.9.8-34.1 ImageMagick-doc-6.8.9.8-34.1 ImageMagick-extra-6.8.9.8-34.1 ImageMagick-extra-debuginfo-6.8.9.8-34.1 libMagick++-6_Q16-5-6.8.9.8-34.1 libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 libMagick++-devel-6.8.9.8-34.1 libMagick++-devel-32bit-6.8.9.8-34.1 libMagickCore-6_Q16-2-6.8.9.8-34.1 libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 libMagickWand-6_Q16-2-6.8.9.8-34.1 libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 perl-PerlMagick-6.8.9.8-34.1 perl-PerlMagick-debuginfo-6.8.9.8-34.1 ImageMagick-6.8.9.8-34.1 as a component of openSUSE 13.2 ImageMagick-debuginfo-6.8.9.8-34.1 as a component of openSUSE 13.2 ImageMagick-debugsource-6.8.9.8-34.1 as a component of openSUSE 13.2 ImageMagick-devel-6.8.9.8-34.1 as a component of openSUSE 13.2 ImageMagick-devel-32bit-6.8.9.8-34.1 as a component of openSUSE 13.2 ImageMagick-doc-6.8.9.8-34.1 as a component of openSUSE 13.2 ImageMagick-extra-6.8.9.8-34.1 as a component of openSUSE 13.2 ImageMagick-extra-debuginfo-6.8.9.8-34.1 as a component of openSUSE 13.2 libMagick++-6_Q16-5-6.8.9.8-34.1 as a component of openSUSE 13.2 libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 as a component of openSUSE 13.2 libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 as a component of openSUSE 13.2 libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 as a component of openSUSE 13.2 libMagick++-devel-6.8.9.8-34.1 as a component of openSUSE 13.2 libMagick++-devel-32bit-6.8.9.8-34.1 as a component of openSUSE 13.2 libMagickCore-6_Q16-2-6.8.9.8-34.1 as a component of openSUSE 13.2 libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 as a component of openSUSE 13.2 libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 as a component of openSUSE 13.2 libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 as a component of openSUSE 13.2 libMagickWand-6_Q16-2-6.8.9.8-34.1 as a component of openSUSE 13.2 libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 as a component of openSUSE 13.2 libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 as a component of openSUSE 13.2 libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 as a component of openSUSE 13.2 perl-PerlMagick-6.8.9.8-34.1 as a component of openSUSE 13.2 perl-PerlMagick-debuginfo-6.8.9.8-34.1 as a component of openSUSE 13.2 coders/dds.c in ImageMagick allows remote attackers to cause a denial of service via a crafted DDS file. CVE-2014-9907 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2014-9907.html CVE-2014-9907 https://bugzilla.suse.com/1000714 SUSE Bug 1000714 Buffer overflow in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (application crash) via a crafted SUN file. CVE-2015-8957 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2015-8957.html CVE-2015-8957 https://bugzilla.suse.com/1000690 SUSE Bug 1000690 https://bugzilla.suse.com/1000691 SUSE Bug 1000691 coders/sun.c in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted SUN file. CVE-2015-8958 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2015-8958.html CVE-2015-8958 https://bugzilla.suse.com/1000690 SUSE Bug 1000690 https://bugzilla.suse.com/1000691 SUSE Bug 1000691 https://bugzilla.suse.com/1000694 SUSE Bug 1000694 https://bugzilla.suse.com/1028079 SUSE Bug 1028079 coders/dds.c in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (CPU consumption) via a crafted DDS file. CVE-2015-8959 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2015-8959.html CVE-2015-8959 https://bugzilla.suse.com/1000713 SUSE Bug 1000713 Integer overflow in the BMP coder in ImageMagick before 7.0.2-10 allows remote attackers to cause a denial of service (crash) via crafted height and width values, which triggers an out-of-bounds write. CVE-2016-6823 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 7.8 AV:N/AC:M/Au:N/C:N/I:P/A:C Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-6823.html CVE-2016-6823 https://bugzilla.suse.com/1001066 SUSE Bug 1001066 https://bugzilla.suse.com/1002207 SUSE Bug 1002207 The SGI coder in ImageMagick before 7.0.2-10 allows remote attackers to cause a denial of service (out-of-bounds read) via a large row value in an sgi file. CVE-2016-7101 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7101.html CVE-2016-7101 https://bugzilla.suse.com/1001221 SUSE Bug 1001221 https://bugzilla.suse.com/1002207 SUSE Bug 1002207 Off-by-one error in magick/cache.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via unspecified vectors. CVE-2016-7513 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7513.html CVE-2016-7513 https://bugzilla.suse.com/1000686 SUSE Bug 1000686 The ReadPSDChannelPixels function in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file. CVE-2016-7514 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7514.html CVE-2016-7514 https://bugzilla.suse.com/1000688 SUSE Bug 1000688 The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the number of pixels. CVE-2016-7515 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7515.html CVE-2016-7515 https://bugzilla.suse.com/1000689 SUSE Bug 1000689 https://bugzilla.suse.com/1000695 SUSE Bug 1000695 The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted VIFF file. CVE-2016-7516 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7516.html CVE-2016-7516 https://bugzilla.suse.com/1000692 SUSE Bug 1000692 https://bugzilla.suse.com/1000693 SUSE Bug 1000693 https://bugzilla.suse.com/1000695 SUSE Bug 1000695 The EncodeImage function in coders/pict.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PICT file. CVE-2016-7517 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7517.html CVE-2016-7517 https://bugzilla.suse.com/1000693 SUSE Bug 1000693 The ReadSUNImage function in coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted SUN file. CVE-2016-7518 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7518.html CVE-2016-7518 https://bugzilla.suse.com/1000694 SUSE Bug 1000694 https://bugzilla.suse.com/1028079 SUSE Bug 1028079 The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file. CVE-2016-7519 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7519.html CVE-2016-7519 https://bugzilla.suse.com/1000689 SUSE Bug 1000689 https://bugzilla.suse.com/1000695 SUSE Bug 1000695 Heap-based buffer overflow in coders/hdr.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted HDR file. CVE-2016-7520 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7520.html CVE-2016-7520 https://bugzilla.suse.com/1000696 SUSE Bug 1000696 Heap-based buffer overflow in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file. CVE-2016-7521 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7521.html CVE-2016-7521 https://bugzilla.suse.com/1000697 SUSE Bug 1000697 The ReadPSDImage function in MagickCore/locale.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file. CVE-2016-7522 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7522.html CVE-2016-7522 https://bugzilla.suse.com/1000698 SUSE Bug 1000698 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVE-2016-7523 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7523.html CVE-2016-7523 https://bugzilla.suse.com/1000699 SUSE Bug 1000699 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVE-2016-7524 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7524.html CVE-2016-7524 https://bugzilla.suse.com/1000700 SUSE Bug 1000700 https://bugzilla.suse.com/1002422 SUSE Bug 1002422 Heap-based buffer overflow in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file. CVE-2016-7525 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7525.html CVE-2016-7525 https://bugzilla.suse.com/1000688 SUSE Bug 1000688 https://bugzilla.suse.com/1000701 SUSE Bug 1000701 coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file. CVE-2016-7527 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7527.html CVE-2016-7527 https://bugzilla.suse.com/1000436 SUSE Bug 1000436 https://bugzilla.suse.com/1000702 SUSE Bug 1000702 The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via a crafted VIFF file. CVE-2016-7528 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7528.html CVE-2016-7528 https://bugzilla.suse.com/1000434 SUSE Bug 1000434 coders/xcf.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted XCF file. CVE-2016-7529 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 6.3 AV:N/AC:M/Au:S/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7529.html CVE-2016-7529 https://bugzilla.suse.com/1000399 SUSE Bug 1000399 https://bugzilla.suse.com/1000434 SUSE Bug 1000434 https://bugzilla.suse.com/1000703 SUSE Bug 1000703 The quantum handling code in ImageMagick allows remote attackers to cause a denial of service (divide-by-zero error or out-of-bounds write) via a crafted file. CVE-2016-7530 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7530.html CVE-2016-7530 https://bugzilla.suse.com/1000399 SUSE Bug 1000399 https://bugzilla.suse.com/1000703 SUSE Bug 1000703 MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted PDB file. CVE-2016-7531 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7531.html CVE-2016-7531 https://bugzilla.suse.com/1000704 SUSE Bug 1000704 coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file. CVE-2016-7532 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7532.html CVE-2016-7532 https://bugzilla.suse.com/1000706 SUSE Bug 1000706 The ReadWPGImage function in coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WPG file. CVE-2016-7533 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7533.html CVE-2016-7533 https://bugzilla.suse.com/1000707 SUSE Bug 1000707 The generic decoder in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted file. CVE-2016-7534 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7534.html CVE-2016-7534 https://bugzilla.suse.com/1000708 SUSE Bug 1000708 coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted PSD file. CVE-2016-7535 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7535.html CVE-2016-7535 https://bugzilla.suse.com/1000709 SUSE Bug 1000709 magick/profile.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via a crafted profile. CVE-2016-7536 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7536.html CVE-2016-7536 https://bugzilla.suse.com/1000710 SUSE Bug 1000710 MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted PDB file. CVE-2016-7537 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7537.html CVE-2016-7537 https://bugzilla.suse.com/1000711 SUSE Bug 1000711 coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted file. CVE-2016-7538 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7538.html CVE-2016-7538 https://bugzilla.suse.com/1000712 SUSE Bug 1000712 Memory leak in AcquireVirtualMemory in ImageMagick before 7 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors. CVE-2016-7539 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7539.html CVE-2016-7539 https://bugzilla.suse.com/1000715 SUSE Bug 1000715 coders/rgf.c in ImageMagick before 6.9.4-10 allows remote attackers to cause a denial of service (assertion failure) by converting an image to rgf format. CVE-2016-7540 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7540.html CVE-2016-7540 https://bugzilla.suse.com/1000394 SUSE Bug 1000394 MagickCore/profile.c in ImageMagick before 7.0.3-2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file. CVE-2016-7799 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7799.html CVE-2016-7799 https://bugzilla.suse.com/1002421 SUSE Bug 1002421 Integer underflow in the parse8BIM function in coders/meta.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service (application crash) via a crafted 8BIM chunk, which triggers a heap-based buffer overflow. CVE-2016-7800 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7800.html CVE-2016-7800 https://bugzilla.suse.com/1002422 SUSE Bug 1002422 Heap-based buffer overflow in the WPG format reader in GraphicsMagick 1.3.25 and earlier allows remote attackers to have unspecified impact via a colormap with a large number of entries. CVE-2016-7996 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7996.html CVE-2016-7996 https://bugzilla.suse.com/1003629 SUSE Bug 1003629 The WPG format reader in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service (assertion failure and crash) via vectors related to a ReferenceBlob and a NULL pointer. CVE-2016-7997 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-7997.html CVE-2016-7997 https://bugzilla.suse.com/1003629 SUSE Bug 1003629 The AcquireQuantumPixels function in MagickCore/quantum.c in ImageMagick before 7.0.3-1 allows remote attackers to have unspecified impact via a crafted image file, which triggers a memory allocation failure. CVE-2016-8677 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-8677.html CVE-2016-8677 https://bugzilla.suse.com/1005328 SUSE Bug 1005328 The ReadSCTImage function in coders/sct.c in GraphicsMagick 1.3.25 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted SCT header. CVE-2016-8682 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-8682.html CVE-2016-8682 https://bugzilla.suse.com/1005125 SUSE Bug 1005125 The ReadPCXImage function in coders/pcx.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file." CVE-2016-8683 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-8683.html CVE-2016-8683 https://bugzilla.suse.com/1005127 SUSE Bug 1005127 The MagickMalloc function in magick/memory.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file." CVE-2016-8684 openSUSE 13.2:ImageMagick-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debuginfo-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-debugsource-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-devel-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-doc-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-6.8.9.8-34.1 openSUSE 13.2:ImageMagick-extra-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-6_Q16-5-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagick++-devel-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickCore-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-32bit-6.8.9.8-34.1 openSUSE 13.2:libMagickWand-6_Q16-2-debuginfo-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-6.8.9.8-34.1 openSUSE 13.2:perl-PerlMagick-debuginfo-6.8.9.8-34.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C Please Install the update. http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html https://www.suse.com/security/cve/CVE-2016-8684.html CVE-2016-8684 https://bugzilla.suse.com/1005123 SUSE Bug 1005123