Explore top 10 tips to secure your open-source projects now. Read More
×
This update for ImageMagick fixes the following issues
* CVE-2026-42050: stack buffer overflow in XTileImage (bsc#1265048).
* CVE-2026-42326: information disclosure via malicious IPTC input file
(bsc#1268092).
* CVE-2026-45031: denial of Service due to resource policy bypass in PSD
decoder (bsc#1268094).
* CVE-2026-45358: off by one in the meta encoder could result in an out of
bounds read of a single byte in the meta encoder (bsc#1268102).
* CVE-2026-45359: information Disclosure via Invalid Connected-Components
Value (bsc#1268095).
* CVE-2026-45624: data exposure due to image processing vulnerability
(bsc#1268096).
* CVE-2026-45664: denial of Service due to excessive resource use in MNG coder
(bsc#1268101).
* CVE-2026-46520: denial of Service via out-of-bounds write when processing
multiple images (bsc#1268112).
* CVE-2026-46521: out of bounds write can occur due to a missing check when
using LZMA compression in the MIFF encoder...
Read the Full Advisory## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-3023=1
* SUSE Linux Enterprise Server 15 SP6 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-3023=1
* openSUSE Leap 15.6
zypper in -t patch SUSE-2026-3023=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64)
* libMagick++-7_Q16HDRI5-7.1.1.21-150600.3.73.1
* libMagickWand-7_Q16HDRI10-debuginfo-7.1.1.21-150600.3.73.1
* perl-PerlMagick-7.1.1.21-150600.3.73.1
* ImageMagick-config-7-upstream-websafe-7.1.1.21-150600.3.73.1
* libMagick++-devel-7.1.1.21-150600.3.73.1
* ImageMagick-config-7-SUSE-7.1.1.21-150600.3.73.1
* libMagick++-7_Q16HDRI5-debuginfo-7.1.1.21-150600.3.73.1
* ImageMagick-7.1.1.21-150600.3.73.1
* ImageMagick-debugsource-7.1.1.21-150600.3.73.1
* perl-PerlMagick-debuginfo-7.1.1.21-150600.3.73.1
* libMagickCore-7_Q16HDRI10-debuginfo-7.1.1.21-150600.3.73.1
* ImageMagick-config-7-upstream-open-7.1.1.21-150600.3.73.1
* libMagickWand-7_Q16HDRI10-7.1.1.21-150600.3.73.1
* ImageMagick-debuginfo-7.1.1.21-150600.3.73.1
* ImageMagick-config-7-upstream-limited-7.1.1.21-150600.3.73.1
* libMagickCore-7_Q16HDRI10-7.1.1.21-150600.3.73.1
* ImageMagick-config-7-upstream-secure-7.1.1.21-150600.3.73.1
* ImageMagick-devel-7.1.1.21-150600.3.73.1
*...
Read the Full Advisory* bsc#1265048
* bsc#1268092
* bsc#1268094
* bsc#1268095
* bsc#1268096
* bsc#1268101
* bsc#1268102
* bsc#1268103
* bsc#1268105
* bsc#1268107
* bsc#1268108
* bsc#1268110
* bsc#1268111
* bsc#1268112
* bsc#1268113
* bsc#1268114
* bsc#1268117
* bsc#1268120
* bsc#1268121
* bsc#1268122
* bsc#1268123
* bsc#1268124
* bsc#1268125
* bsc#1268126
* bsc#1268640
* bsc#1268645
* bsc#1268878
* bsc#1268879
* bsc#1268880
* bsc#1269063
* bsc#1269064
* bsc#1270001
* bsc#1270002
* bsc#1270003
* bsc#1270004
* bsc#1270073
* bsc#1270074
* bsc#1270077
* bsc#1270079
* bsc#1270080
* bsc#1271099
## References:
* https://www.suse.com/security/cve/CVE-2026-40169.html
* https://www.suse.com/security/cve/CVE-2026-42050.html
* https://www.suse.com/security/cve/CVE-2026-42326.html
* https://www.suse.com/security/cve/CVE-2026-45031.html
* https://www.suse.com/security/cve/CVE-2026-45358.html
* https://www.suse.com/security/cve/CVE-2026-45359.html
* https://www.suse.com/security/cve/CVE-2026-45624.html
* https://www.suse.com/security/cve/CVE-2026-45664.html
*...
Read the Full AdvisoryGet the latest Linux and open source security news straight to your inbox.