Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

openSUSE Leap 16.0 ImageMagick Important Denial of Service Fix 2026-20118-1

opensuse
Calendar Grey February 3, 2026
Dist Opensuse Esm H88
ImageMagick update for openSUSE fixes 5 issues including Denial of Service vulnerabilities. Install the latest patches now.
An update that solves 5 vulnerabilities and has 5 bug fixes can now be installed.

Description

This update for ImageMagick fixes the following issues:

- CVE-2025-65955: Fixed use-after-free/double-free in ImageMagick (bsc#1254435)

- CVE-2025-66628: Fixed Integer Overflow leading to out of bounds read in ImageMagick (32-bit only) (bsc#1254820)

- CVE-2025-68618: Fixed that reading a malicious SVG file may result in a DoS attack (bsc#1255821)

- CVE-2025-68950: Fixed check for circular references in mvg files may lead to stack overflow (bsc#1255822)

- CVE-2025-69204: Fixed an integer overflow can lead to a DoS attack (bsc#1255823)

Patch instructions:

To install this openSUSE security update use the suse recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap 16.0

zypper in -t patch openSUSE-Leap-16.0-203=1

Topics%20covered

Topics Covered

security advisory denial of service important imagemagick OpenSUSE use-after-free

Patch

Package List

- openSUSE Leap 16.0:

ImageMagick-7.1.2.0-160000.5.1

ImageMagick-config-7-SUSE-7.1.2.0-160000.5.1

ImageMagick-config-7-upstream-limited-7.1.2.0-160000.5.1

ImageMagick-config-7-upstream-open-7.1.2.0-160000.5.1

ImageMagick-config-7-upstream-secure-7.1.2.0-160000.5.1

ImageMagick-config-7-upstream-websafe-7.1.2.0-160000.5.1

ImageMagick-devel-7.1.2.0-160000.5.1

ImageMagick-doc-7.1.2.0-160000.5.1

ImageMagick-extra-7.1.2.0-160000.5.1

libMagick++-7_Q16HDRI5-7.1.2.0-160000.5.1

libMagick++-devel-7.1.2.0-160000.5.1

libMagickCore-7_Q16HDRI10-7.1.2.0-160000.5.1

libMagickWand-7_Q16HDRI10-7.1.2.0-160000.5.1

perl-PerlMagick-7.1.2.0-160000.5.1

References

* bsc#1254435

* bsc#1254820

* bsc#1255821

* bsc#1255822

* bsc#1255823

References:

* https://www.suse.com/security/cve/CVE-2025-65955.html

* https://www.suse.com/security/cve/CVE-2025-66628.html

* https://www.suse.com/security/cve/CVE-2025-68618.html

* https://www.suse.com/security/cve/CVE-2025-68950.html

* https://www.suse.com/security/cve/CVE-2025-69204.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2026:20118-1
Rating: important
Affected Products: openSUSE Leap 16.0 -------------------------------------------------------------

Topics%20covered

Topics Covered

security advisory denial of service important imagemagick OpenSUSE use-after-free

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here