Explore top 10 tips to secure your open-source projects now. Read More
×
This update includes new upstream snapshots of openQA and os-autoinst, with the usual mix of fixes and improvements. See upstream changelogs for details. For leptonica, this update removes an incorrect workaround for a GCC compilation issue, since GCC is now fixed. This should resolve incomplete processing of files on aarch64. Without this fix, os-autoinst's test suite fails.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-a72f110dcd 2026-07-04 00:49:17.194797+00:00 -------------------------------------------------------------------------------- Name : leptonica Product : Fedora 44 Version : 1.87.0 Release : 4.fc44 URL : https://github.com/danbloomberg/leptonica Summary : C library for efficient image processing and image analysis operations Description : The library supports many operations that are useful on * Document images * Natural images Fundamental image processing and image analysis operations * Rasterop (aka bitblt) * Affine transforms (scaling, translation, rotation, shear) on images of arbitrary pixel depth * Projective and bi-linear transforms * Binary and gray scale morphology, rank order filters, and convolution * Seed-fill and connected components * Image transformations with changes in pixel depth, both at the same scale and with scale change * Pixelwise masking, blending, enhancement, arithmetic ops, etc. -------------------------------------------------------------------------------- Update Information: This update includes new upstream snapshots of openQA and os-autoinst, with the usual mix of fixes and improvements. See upstream changelogs for details. For leptonica, this update removes an incorrect workaround for a GCC compilation issue, since GCC is now fixed. This should resolve incomplete processing of files on aarch64. Without this fix, os-autoinst's test suitefails. -------------------------------------------------------------------------------- ChangeLog: * Thu May 21 2026 Adam Williamson - 1.87.0-4 - Drop the workaround as GCC should be fixed now -------------------------------------------------------------------------------- References: [ 1 ] Bug #2435305 - tesseract tests fail on Rawhide on aarch64 due to leptonica issue https://bugzilla.redhat.com/show_bug.cgi?id=2435305 [ 2 ] Bug #2454041 - CVE-2026-4800 openqa: lodash: Arbitrary code execution via untrusted input in template imports [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2454041 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-a72f110dcd' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
An update that solves 21 vulnerabilities can now be installed.. # Security update for ImageMagick Announcement ID: SUSE-SU-2026:1497-1 Release Date: 2026-04-20T16:15:55Z Rating: important References: * bsc#1258790 * bsc#1259446 * bsc#1259447 * bsc#1259448 * bsc#1259450 * bsc#1259451 * bsc#1259452 * bsc#1259455 * bsc#1259456 * bsc#1259457 * bsc#1259463 * bsc#1259464 * bsc#1259466 * bsc#1259467 * bsc#1259468 * bsc#1259528 * bsc#1259612 * bsc#1259872 * bsc#1260874 * bsc#1260879 * bsc#1262097 Cross-References: * CVE-2026-24484 * CVE-2026-28493 * CVE-2026-28494 * CVE-2026-28686 * CVE-2026-28687 * CVE-2026-28688 * CVE-2026-28689 * CVE-2026-28690 * CVE-2026-28691 * CVE-2026-28692 * CVE-2026-28693 * CVE-2026-30883 * CVE-2026-30929 * CVE-2026-30936 * CVE-2026-30937 * CVE-2026-31853 * CVE-2026-32259 * CVE-2026-32636 * CVE-2026-33535 * CVE-2026-33536 * CVE-2026-33905 CVSS scores: * CVE-2026-24484 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-24484 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-24484 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-28493 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-28493 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-28493 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-28494 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-28494 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-28494 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H * CVE-2026-28686 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-28686 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-28686 ( NVD ): 6.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-28687 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-28687 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-28687 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-28688 ( SUSE ): 5.9 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-28688 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-28688 ( NVD ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-28688 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-28689 ( SUSE ): 7.2 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-28689 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-28689 ( NVD ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-28690 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-28690 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-28690 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H * CVE-2026-28690 ( NVD ): 6.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:H * CVE-2026-28691 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-28691 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-28691 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-28692 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-28692 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-28692 ( NVD ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2026-28693 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-28693 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-28693 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-30883 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N *CVE-2026-30883 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-30883 ( NVD ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-30883 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-30929 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-30929 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-30929 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-30929 ( NVD ): 7.7 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H * CVE-2026-30936 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-30936 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-30936 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-30937 ( SUSE ): 7.0 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-30937 ( SUSE ): 6.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-30937 ( NVD ): 6.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-30937 ( NVD ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31853 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31853 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31853 ( NVD ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31853 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-32259 ( SUSE ): 5.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-32259 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H * CVE-2026-32259 ( NVD ): 6.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H * CVE-2026-32636 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-32636 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-32636 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-32636 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-33535 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-33535 ( NVD ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-33535 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33536 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-33536 ( SUSE ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H * CVE-2026-33536 ( NVD ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33536 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-33905 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-33905 ( SUSE ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H * CVE-2026-33905 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H * CVE-2026-33905 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * Desktop Applications Module 15-SP7 * openSUSE Leap 15.4 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15SP7 An update that solves 21 vulnerabilities can now be installed. ## Description: This update for ImageMagick fixes the following issues: * CVE-2026-24484: denial of service via multi-layer nested MVG to SVG conversion (bsc#1258790). * CVE-2026-28493: integer overflow in the SIXEL decoder leads to out-of-bounds write (bsc#1259446). * CVE-2026-28494: missing bounds checks in the morphology kernel parsing functions can lead to a stack buffer overflow (bsc#1259447). * CVE-2026-28686: undersized output buffer allocation in the PCL encoder can lead to a heap buffer overflow (bsc#1259448). * CVE-2026-28687: heap use-after-free vulnerability in the MSL decoder via a crafted MSL file (bsc#1259450). * CVE-2026-28688: heap use-after-free in the MSL encoder when a cloned image is destroyed twice (bsc#1259451). * CVE-2026-28689: `domain="path"` authorization is checked before final file open/use and allows for read/write bypass via symlink swaps (bsc#1259452). * CVE-2026-28690: missing bounds check in the MNG encoder can lead to a stack buffer overflow (bsc#1259456). * CVE-2026-28691: missing check in the JBIG decoder can lead to an uninitialized pointer dereference (bsc#1259455). * CVE-2026-28692: 32-bit integer overflow in MAT decoder can lead to a heap buffer over-read (bsc#1259457). * CVE-2026-28693: integer overflow in the DIB coder can lead to an out-of- bounds read or write (bsc#1259466). * CVE-2026-30883: missing bounds check when encoding a PNG image can lead to a heap buffer over-write (bsc#1259467). * CVE-2026-30929: improper use of fixed-size stack buffer in `MagnifyImage`can lead to a stack buffer overflow (bsc#1259468). * CVE-2026-30936: heap buffer overflow in `WaveletDenoiseImage` (bsc#1259464). * CVE-2026-30937: heap buffer overflow in XWD encoder due to CARD32 arithmetic overflow (bsc#1259463). * CVE-2026-31853: heap buffer overflow leads to crash in the SFW decoder of 32-bit systems when processingextremely large images (bsc#1259528). * CVE-2026-32259: memory allocation failure in the SIXEL encoder can lead to a stack out-of-bound write (bsc#1259612). * CVE-2026-32636: denial of service via out-of-bounds write in `NewXMLTree` method (bsc#1259872). * CVE-2026-33535: out-of-Bounds write of a zero byte in X11 display interaction (bsc#1260874). * CVE-2026-33536: denial of Service via a stack out-of-bounds write in `InterpretImageFilename` (bsc#1260879). * CVE-2026-33905: denial of service via out-of-bounds read in `-sample` operation (bsc#1262097). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-1497=1 * Desktop Applications Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP7-2026-1497=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-1497=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-1497=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-1497=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-1497=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-1497=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-1497=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-1497=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-1497=1 * SUSE Linux Enterprise Serverfor SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-1497=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-1497=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libMagick++-7_Q16HDRI5-7.1.0.9-150400.6.75.1 * ImageMagick-devel-7.1.0.9-150400.6.75.1 * ImageMagick-extra-7.1.0.9-150400.6.75.1 * ImageMagick-debugsource-7.1.0.9-150400.6.75.1 * ImageMagick-7.1.0.9-150400.6.75.1 * libMagick++-devel-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-debuginfo-7.1.0.9-150400.6.75.1 * ImageMagick-debuginfo-7.1.0.9-150400.6.75.1 * libMagick++-7_Q16HDRI5-debuginfo-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-debuginfo-7.1.0.9-150400.6.75.1 * perl-PerlMagick-7.1.0.9-150400.6.75.1 * perl-PerlMagick-debuginfo-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-7.1.0.9-150400.6.75.1 * ImageMagick-extra-debuginfo-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-upstream-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-SUSE-7.1.0.9-150400.6.75.1 * openSUSE Leap 15.4 (x86_64) * libMagick++-7_Q16HDRI5-32bit-7.1.0.9-150400.6.75.1 * libMagick++-7_Q16HDRI5-32bit-debuginfo-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-32bit-debuginfo-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-32bit-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-32bit-debuginfo-7.1.0.9-150400.6.75.1 * libMagick++-devel-32bit-7.1.0.9-150400.6.75.1 * ImageMagick-devel-32bit-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-32bit-7.1.0.9-150400.6.75.1 * openSUSE Leap 15.4 (noarch) * ImageMagick-doc-7.1.0.9-150400.6.75.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libMagickCore-7_Q16HDRI10-64bit-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-64bit-7.1.0.9-150400.6.75.1 * libMagick++-7_Q16HDRI5-64bit-7.1.0.9-150400.6.75.1 *libMagick++-7_Q16HDRI5-64bit-debuginfo-7.1.0.9-150400.6.75.1 * ImageMagick-devel-64bit-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-64bit-debuginfo-7.1.0.9-150400.6.75.1 * libMagick++-devel-64bit-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-64bit-debuginfo-7.1.0.9-150400.6.75.1 * Desktop Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64) * ImageMagick-debugsource-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-upstream-7.1.0.9-150400.6.75.1 * ImageMagick-debuginfo-7.1.0.9-150400.6.75.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libMagick++-7_Q16HDRI5-7.1.0.9-150400.6.75.1 * ImageMagick-devel-7.1.0.9-150400.6.75.1 * ImageMagick-debugsource-7.1.0.9-150400.6.75.1 * ImageMagick-7.1.0.9-150400.6.75.1 * libMagick++-devel-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-debuginfo-7.1.0.9-150400.6.75.1 * ImageMagick-debuginfo-7.1.0.9-150400.6.75.1 * libMagick++-7_Q16HDRI5-debuginfo-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-debuginfo-7.1.0.9-150400.6.75.1 * perl-PerlMagick-7.1.0.9-150400.6.75.1 * perl-PerlMagick-debuginfo-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-upstream-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-SUSE-7.1.0.9-150400.6.75.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libMagick++-7_Q16HDRI5-7.1.0.9-150400.6.75.1 * ImageMagick-devel-7.1.0.9-150400.6.75.1 * ImageMagick-debugsource-7.1.0.9-150400.6.75.1 * ImageMagick-7.1.0.9-150400.6.75.1 * libMagick++-devel-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-debuginfo-7.1.0.9-150400.6.75.1 * ImageMagick-debuginfo-7.1.0.9-150400.6.75.1 * libMagick++-7_Q16HDRI5-debuginfo-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-debuginfo-7.1.0.9-150400.6.75.1 *perl-PerlMagick-7.1.0.9-150400.6.75.1 * perl-PerlMagick-debuginfo-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-upstream-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-SUSE-7.1.0.9-150400.6.75.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * libMagick++-7_Q16HDRI5-7.1.0.9-150400.6.75.1 * ImageMagick-devel-7.1.0.9-150400.6.75.1 * ImageMagick-debugsource-7.1.0.9-150400.6.75.1 * ImageMagick-7.1.0.9-150400.6.75.1 * libMagick++-devel-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-debuginfo-7.1.0.9-150400.6.75.1 * ImageMagick-debuginfo-7.1.0.9-150400.6.75.1 * libMagick++-7_Q16HDRI5-debuginfo-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-debuginfo-7.1.0.9-150400.6.75.1 * perl-PerlMagick-7.1.0.9-150400.6.75.1 * perl-PerlMagick-debuginfo-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-upstream-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-SUSE-7.1.0.9-150400.6.75.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * libMagick++-7_Q16HDRI5-7.1.0.9-150400.6.75.1 * ImageMagick-devel-7.1.0.9-150400.6.75.1 * ImageMagick-debugsource-7.1.0.9-150400.6.75.1 * ImageMagick-7.1.0.9-150400.6.75.1 * libMagick++-devel-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-debuginfo-7.1.0.9-150400.6.75.1 * ImageMagick-debuginfo-7.1.0.9-150400.6.75.1 * libMagick++-7_Q16HDRI5-debuginfo-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-debuginfo-7.1.0.9-150400.6.75.1 * perl-PerlMagick-7.1.0.9-150400.6.75.1 * perl-PerlMagick-debuginfo-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-upstream-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-SUSE-7.1.0.9-150400.6.75.1 * SUSE Linux Enterprise Server15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * libMagick++-7_Q16HDRI5-7.1.0.9-150400.6.75.1 * ImageMagick-devel-7.1.0.9-150400.6.75.1 * ImageMagick-debugsource-7.1.0.9-150400.6.75.1 * ImageMagick-7.1.0.9-150400.6.75.1 * libMagick++-devel-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-debuginfo-7.1.0.9-150400.6.75.1 * ImageMagick-debuginfo-7.1.0.9-150400.6.75.1 * libMagick++-7_Q16HDRI5-debuginfo-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-debuginfo-7.1.0.9-150400.6.75.1 * perl-PerlMagick-7.1.0.9-150400.6.75.1 * perl-PerlMagick-debuginfo-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-upstream-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-SUSE-7.1.0.9-150400.6.75.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * libMagick++-7_Q16HDRI5-7.1.0.9-150400.6.75.1 * ImageMagick-devel-7.1.0.9-150400.6.75.1 * ImageMagick-debugsource-7.1.0.9-150400.6.75.1 * ImageMagick-7.1.0.9-150400.6.75.1 * libMagick++-devel-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-debuginfo-7.1.0.9-150400.6.75.1 * ImageMagick-debuginfo-7.1.0.9-150400.6.75.1 * libMagick++-7_Q16HDRI5-debuginfo-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-debuginfo-7.1.0.9-150400.6.75.1 * perl-PerlMagick-7.1.0.9-150400.6.75.1 * perl-PerlMagick-debuginfo-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-upstream-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-SUSE-7.1.0.9-150400.6.75.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * ImageMagick-debugsource-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-upstream-7.1.0.9-150400.6.75.1 * ImageMagick-debuginfo-7.1.0.9-150400.6.75.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) *libMagick++-7_Q16HDRI5-7.1.0.9-150400.6.75.1 * ImageMagick-devel-7.1.0.9-150400.6.75.1 * ImageMagick-debugsource-7.1.0.9-150400.6.75.1 * ImageMagick-7.1.0.9-150400.6.75.1 * libMagick++-devel-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-debuginfo-7.1.0.9-150400.6.75.1 * ImageMagick-debuginfo-7.1.0.9-150400.6.75.1 * libMagick++-7_Q16HDRI5-debuginfo-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-debuginfo-7.1.0.9-150400.6.75.1 * perl-PerlMagick-7.1.0.9-150400.6.75.1 * perl-PerlMagick-debuginfo-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-upstream-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-SUSE-7.1.0.9-150400.6.75.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * libMagick++-7_Q16HDRI5-7.1.0.9-150400.6.75.1 * ImageMagick-devel-7.1.0.9-150400.6.75.1 * ImageMagick-debugsource-7.1.0.9-150400.6.75.1 * ImageMagick-7.1.0.9-150400.6.75.1 * libMagick++-devel-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-debuginfo-7.1.0.9-150400.6.75.1 * ImageMagick-debuginfo-7.1.0.9-150400.6.75.1 * libMagick++-7_Q16HDRI5-debuginfo-7.1.0.9-150400.6.75.1 * libMagickWand-7_Q16HDRI10-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-debuginfo-7.1.0.9-150400.6.75.1 * perl-PerlMagick-7.1.0.9-150400.6.75.1 * perl-PerlMagick-debuginfo-7.1.0.9-150400.6.75.1 * libMagickCore-7_Q16HDRI10-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-upstream-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-SUSE-7.1.0.9-150400.6.75.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * ImageMagick-debugsource-7.1.0.9-150400.6.75.1 * ImageMagick-config-7-upstream-7.1.0.9-150400.6.75.1 * ImageMagick-debuginfo-7.1.0.9-150400.6.75.1 ## References: * https://www.suse.com/security/cve/CVE-2026-24484.html * https://www.suse.com/security/cve/CVE-2026-28493.html *https://www.suse.com/security/cve/CVE-2026-28494.html * https://www.suse.com/security/cve/CVE-2026-28686.html * https://www.suse.com/security/cve/CVE-2026-28687.html * https://www.suse.com/security/cve/CVE-2026-28688.html * https://www.suse.com/security/cve/CVE-2026-28689.html * https://www.suse.com/security/cve/CVE-2026-28690.html * https://www.suse.com/security/cve/CVE-2026-28691.html * https://www.suse.com/security/cve/CVE-2026-28692.html * https://www.suse.com/security/cve/CVE-2026-28693.html * https://www.suse.com/security/cve/CVE-2026-30883.html * https://www.suse.com/security/cve/CVE-2026-30929.html * https://www.suse.com/security/cve/CVE-2026-30936.html * https://www.suse.com/security/cve/CVE-2026-30937.html * https://www.suse.com/security/cve/CVE-2026-31853.html * https://www.suse.com/security/cve/CVE-2026-32259.html * https://www.suse.com/security/cve/CVE-2026-32636.html * https://www.suse.com/security/cve/CVE-2026-33535.html * https://www.suse.com/security/cve/CVE-2026-33536.html * https://www.suse.com/security/cve/CVE-2026-33905.html * https://bugzilla.suse.com/show_bug.cgi?id=1258790 * https://bugzilla.suse.com/show_bug.cgi?id=1259446 * https://bugzilla.suse.com/show_bug.cgi?id=1259447 * https://bugzilla.suse.com/show_bug.cgi?id=1259448 * https://bugzilla.suse.com/show_bug.cgi?id=1259450 * https://bugzilla.suse.com/show_bug.cgi?id=1259451 * https://bugzilla.suse.com/show_bug.cgi?id=1259452 * https://bugzilla.suse.com/show_bug.cgi?id=1259455 * https://bugzilla.suse.com/show_bug.cgi?id=1259456 * https://bugzilla.suse.com/show_bug.cgi?id=1259457 * https://bugzilla.suse.com/show_bug.cgi?id=1259463 * https://bugzilla.suse.com/show_bug.cgi?id=1259464 * https://bugzilla.suse.com/show_bug.cgi?id=1259466 * https://bugzilla.suse.com/show_bug.cgi?id=1259467 * https://bugzilla.suse.com/show_bug.cgi?id=1259468 * https://bugzilla.suse.com/show_bug.cgi?id=1259528 * https://bugzilla.suse.com/show_bug.cgi?id=1259612 *https://bugzilla.suse.com/show_bug.cgi?id=1259872 * https://bugzilla.suse.com/show_bug.cgi?id=1260874 * https://bugzilla.suse.com/show_bug.cgi?id=1260879 * https://bugzilla.suse.com/show_bug.cgi?id=1262097 . SUSE updates ImageMagick to fix 21 vulnerabilities, enhancing security and preventing potential denial of service issues. Upgrade recommended.. ImageMagick security update, SUSE vulnerabilities fix, important security updates, denial of service prevention. . Severity: Important. LinuxSecurity.com Team
LibRaw 0.22.1 and rebuilds Release 3.1.12.0 (Apr 1, 2026) -- compared to 3.1.11.0 oiiotool: Better type understanding with -i:ch= and other cleanup #5056 texture: Fix texture overblur with st-blur parameters #5071 #5080 (by Pascal Lecocq) (3.1.12.0, 3.0.17.0). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-bef0050737 2026-04-13 21:06:00.498961+00:00 -------------------------------------------------------------------------------- Name : vips Product : Fedora 44 Version : 8.18.0 Release : 6.fc44 URL : https://www.libvips.org/ Summary : C/C++ library for processing large images Description : VIPS is an image processing library. It is good for very large images (even larger than the amount of RAM in your machine), and for working with color. This package should be installed if you want to use a program compiled against VIPS. -------------------------------------------------------------------------------- Update Information: LibRaw 0.22.1 and rebuilds Release 3.1.12.0 (Apr 1, 2026) -- compared to 3.1.11.0 oiiotool: Better type understanding with -i:ch= and other cleanup #5056 texture: Fix texture overblur with st-blur parameters #5071 #5080 (by Pascal Lecocq) (3.1.12.0, 3.0.17.0) IBA: Handle offset data windows in fillholes_pushpull #5105 (3.1.12.0, 3.0.17.0) ImageInput: check_open fixes and new validity checks #5087 (3.1.12.0, 3.0.17.0) bmp: Use check_open to guard against corrupt resolutions #5086 (3.1.12.0, 3.0.17.0) heif: Fix invalid read writing 8-bit images with dimensions not a multiple of 64 #5095 (by Brecht Van Lommel) ico: Various validity checks and error handling for corruptions #5088 (3.1.12.0, 3.0.17.0) jpeg: Improved safety and error reporting for jpeg and iptc #5081 jpeg2000: Suppress leak when reading with OpenJPH #5098 psd: Fixes against corrupt files with better validation #5089 (3.1.12.0, 3.0.17.0) rla: Lots of additional validity checking and safety#5094 (3.1.12.0, 3.0.17.0) tiff: Support GPS fields, and other metadata enhancements #5050 tiff: Fix buffer overrun and improve error reporting #5082, fix wrong number of values passed to invert_photometric #5083, check for invalid bit depth in palette images #5091 ImageSpec: metadata_val improved safety #5096 (3.1.12.0, 3.0.17.0) fix: Fix UB-sanitizer warning about alignment #5097 fix: Catch exceptions in print-uncaught-messages destructor #5103 fix: Enhanced exception safety for our use of OpenColorIO #5114 fix: Fix possible fmt exceptions where we might have passed null string #5115 build: Test building with clang 22.1, fix warnings uncovered #5067 build: Improve security by pinning auto-build dependencies by hash #5076 build: Include idiff in the python wheels we build #5104 (3.1.12.0, 3.0.17.0) build(pybind11): Address new pybind11 float/int auto-conversion behavior #5058 build(win): Embed manifest in OIIO executables to enable long path handling #5066 (by Nathan Rusch) ci: Add CI test for MSVS 2026 #5060 (3.1.12.0, 3.0.17.0) ci: For security, replace workflow substitutions with safer env substitutions #5070 ci: Speed up slow benchmarks for debug and sanitizer CI tests #5077 ci: On Mac Intel CI variant, don't install openvdb, for speed #5065 (3.1.12.0, 3.0.17.0) ci: Bump GitHub Actions to latest versions #5078 #5110 #5119 ci: Fix broken Mac CI and wheel building by specifying full compiler paths #5100 #5101 (3.1.12.0, 3.0.17.0) ci: Update certificates to be able to install icc #5122 (3.1.12.0, 3.0.17.0) ci: Turn off nightly workflows for user forks #5042 tests: New ref outputs for tiff-misc, heif no-avif, and ffmpeg 8.1 cases #5075 #5079 #5099 #5112 docs: Update description for dwaCompressionLevel #5074 (by Aamir Raza) docs: Fix formatting examples for version macros #5073 docs: Keep TextureSystem docs in sync with ImageCache #5085 (3.1.12.0, 3.0.17.0) docs: Fix typos and incorrect attribute name in a comment #5093 (3.1.12.0, 3.0.17.0) docs: Fix misstatement about oiiotool--if #5102 (3.1.12.0, 3.0.17.0) admin: Draft policy on use of AI coding assistants #5072 (3.1.12.0, 3.0.17.0) ci: Freetype adjustments #4999 Update to 5.1 (#2451401) Update to 5.0 (#2447841) -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 8 2026 Gwyn Ciesla - 8.18.0-6 - Libraw rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2447841 - swayimg-.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2447841 [ 2 ] Bug #2451401 - swayimg-5.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2451401 [ 3 ] Bug #2454235 - CVE-2026-5318 LibRaw: LibRaw: Denial of Service via out-of-bounds write in JPEG DHT Parser [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2454235 [ 4 ] Bug #2454464 - CVE-2026-5342 LibRaw: LibRaw: Out-of-bounds read via `load_flags/raw_width` argument manipulation [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2454464 [ 5 ] Bug #2455346 - LibRaw-0.22.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2455346 [ 6 ] Bug #2456557 - CVE-2026-20884 LibRaw: LibRaw: Arbitrary code execution via integer overflow in deflate_dng_load_raw [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2456557 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-bef0050737' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
LibRaw 0.22.1 and rebuilds Release 3.1.12.0 (Apr 1, 2026) -- compared to 3.1.11.0 oiiotool: Better type understanding with -i:ch= and other cleanup #5056 texture: Fix texture overblur with st-blur parameters #5071 #5080 (by Pascal Lecocq) (3.1.12.0, 3.0.17.0). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-bef0050737 2026-04-13 21:06:00.498961+00:00 -------------------------------------------------------------------------------- Name : rawtherapee Product : Fedora 44 Version : 5.12 Release : 8.fc44 URL : http://www.rawtherapee.com/ Summary : Raw image processing software Description : Rawtherapee is a RAW image processing software. It gives full control over many parameters to enhance the raw picture before finally exporting it to some common image format. -------------------------------------------------------------------------------- Update Information: LibRaw 0.22.1 and rebuilds Release 3.1.12.0 (Apr 1, 2026) -- compared to 3.1.11.0 oiiotool: Better type understanding with -i:ch= and other cleanup #5056 texture: Fix texture overblur with st-blur parameters #5071 #5080 (by Pascal Lecocq) (3.1.12.0, 3.0.17.0) IBA: Handle offset data windows in fillholes_pushpull #5105 (3.1.12.0, 3.0.17.0) ImageInput: check_open fixes and new validity checks #5087 (3.1.12.0, 3.0.17.0) bmp: Use check_open to guard against corrupt resolutions #5086 (3.1.12.0, 3.0.17.0) heif: Fix invalid read writing 8-bit images with dimensions not a multiple of 64 #5095 (by Brecht Van Lommel) ico: Various validity checks and error handling for corruptions #5088 (3.1.12.0, 3.0.17.0) jpeg: Improved safety and error reporting for jpeg and iptc #5081 jpeg2000: Suppress leak when reading with OpenJPH #5098 psd: Fixes against corrupt files with better validation #5089 (3.1.12.0, 3.0.17.0) rla: Lots of additional validity checking and safety #5094 (3.1.12.0, 3.0.17.0) tiff: Support GPS fields, and othermetadata enhancements #5050 tiff: Fix buffer overrun and improve error reporting #5082, fix wrong number of values passed to invert_photometric #5083, check for invalid bit depth in palette images #5091 ImageSpec: metadata_val improved safety #5096 (3.1.12.0, 3.0.17.0) fix: Fix UB-sanitizer warning about alignment #5097 fix: Catch exceptions in print-uncaught-messages destructor #5103 fix: Enhanced exception safety for our use of OpenColorIO #5114 fix: Fix possible fmt exceptions where we might have passed null string #5115 build: Test building with clang 22.1, fix warnings uncovered #5067 build: Improve security by pinning auto-build dependencies by hash #5076 build: Include idiff in the python wheels we build #5104 (3.1.12.0, 3.0.17.0) build(pybind11): Address new pybind11 float/int auto-conversion behavior #5058 build(win): Embed manifest in OIIO executables to enable long path handling #5066 (by Nathan Rusch) ci: Add CI test for MSVS 2026 #5060 (3.1.12.0, 3.0.17.0) ci: For security, replace workflow substitutions with safer env substitutions #5070 ci: Speed up slow benchmarks for debug and sanitizer CI tests #5077 ci: On Mac Intel CI variant, don't install openvdb, for speed #5065 (3.1.12.0, 3.0.17.0) ci: Bump GitHub Actions to latest versions #5078 #5110 #5119 ci: Fix broken Mac CI and wheel building by specifying full compiler paths #5100 #5101 (3.1.12.0, 3.0.17.0) ci: Update certificates to be able to install icc #5122 (3.1.12.0, 3.0.17.0) ci: Turn off nightly workflows for user forks #5042 tests: New ref outputs for tiff-misc, heif no-avif, and ffmpeg 8.1 cases #5075 #5079 #5099 #5112 docs: Update description for dwaCompressionLevel #5074 (by Aamir Raza) docs: Fix formatting examples for version macros #5073 docs: Keep TextureSystem docs in sync with ImageCache #5085 (3.1.12.0, 3.0.17.0) docs: Fix typos and incorrect attribute name in a comment #5093 (3.1.12.0, 3.0.17.0) docs: Fix misstatement about oiiotool --if #5102 (3.1.12.0, 3.0.17.0) admin: Draft policy on use ofAI coding assistants #5072 (3.1.12.0, 3.0.17.0) ci: Freetype adjustments #4999 Update to 5.1 (#2451401) Update to 5.0 (#2447841) -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 8 2026 Gwyn Ciesla - 5.12-8 - Libraw rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2447841 - swayimg-.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2447841 [ 2 ] Bug #2451401 - swayimg-5.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2451401 [ 3 ] Bug #2454235 - CVE-2026-5318 LibRaw: LibRaw: Denial of Service via out-of-bounds write in JPEG DHT Parser [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2454235 [ 4 ] Bug #2454464 - CVE-2026-5342 LibRaw: LibRaw: Out-of-bounds read via `load_flags/raw_width` argument manipulation [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2454464 [ 5 ] Bug #2455346 - LibRaw-0.22.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2455346 [ 6 ] Bug #2456557 - CVE-2026-20884 LibRaw: LibRaw: Arbitrary code execution via integer overflow in deflate_dng_load_raw [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2456557 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-bef0050737' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list
LibRaw 0.22.1 and rebuilds Release 3.1.12.0 (Apr 1, 2026) -- compared to 3.1.11.0 oiiotool: Better type understanding with -i:ch= and other cleanup #5056 texture: Fix texture overblur with st-blur parameters #5071 #5080 (by Pascal Lecocq) (3.1.12.0, 3.0.17.0). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-bef0050737 2026-04-13 21:06:00.498961+00:00 -------------------------------------------------------------------------------- Name : OpenImageIO Product : Fedora 44 Version : 3.1.12.0 Release : 2.fc44 URL : https://openimageio.org/ Summary : Library for reading and writing images Description : OpenImageIO is a library for reading and writing images, and a bunch of related classes, utilities, and applications. Main features include: - Extremely simple but powerful ImageInput and ImageOutput APIs for reading and writing 2D images that is format agnostic. - Format plugins for TIFF, JPEG/JFIF, OpenEXR, PNG, HDR/RGBE, Targa, JPEG-2000, DPX, Cineon, FITS, BMP, ICO, RMan Zfile, Softimage PIC, DDS, SGI, PNM/PPM/PGM/PBM. - An ImageCache class that transparently manages a cache so that it can access truly vast amounts of image data. -------------------------------------------------------------------------------- Update Information: LibRaw 0.22.1 and rebuilds Release 3.1.12.0 (Apr 1, 2026) -- compared to 3.1.11.0 oiiotool: Better type understanding with -i:ch= and other cleanup #5056 texture: Fix texture overblur with st-blur parameters #5071 #5080 (by Pascal Lecocq) (3.1.12.0, 3.0.17.0) IBA: Handle offset data windows in fillholes_pushpull #5105 (3.1.12.0, 3.0.17.0) ImageInput: check_open fixes and new validity checks #5087 (3.1.12.0, 3.0.17.0) bmp: Use check_open to guard against corrupt resolutions #5086 (3.1.12.0, 3.0.17.0) heif: Fix invalid read writing 8-bit images with dimensions not a multiple of 64 #5095 (by Brecht Van Lommel) ico: Various validity checks anderror handling for corruptions #5088 (3.1.12.0, 3.0.17.0) jpeg: Improved safety and error reporting for jpeg and iptc #5081 jpeg2000: Suppress leak when reading with OpenJPH #5098 psd: Fixes against corrupt files with better validation #5089 (3.1.12.0, 3.0.17.0) rla: Lots of additional validity checking and safety #5094 (3.1.12.0, 3.0.17.0) tiff: Support GPS fields, and other metadata enhancements #5050 tiff: Fix buffer overrun and improve error reporting #5082, fix wrong number of values passed to invert_photometric #5083, check for invalid bit depth in palette images #5091 ImageSpec: metadata_val improved safety #5096 (3.1.12.0, 3.0.17.0) fix: Fix UB-sanitizer warning about alignment #5097 fix: Catch exceptions in print-uncaught-messages destructor #5103 fix: Enhanced exception safety for our use of OpenColorIO #5114 fix: Fix possible fmt exceptions where we might have passed null string #5115 build: Test building with clang 22.1, fix warnings uncovered #5067 build: Improve security by pinning auto-build dependencies by hash #5076 build: Include idiff in the python wheels we build #5104 (3.1.12.0, 3.0.17.0) build(pybind11): Address new pybind11 float/int auto-conversion behavior #5058 build(win): Embed manifest in OIIO executables to enable long path handling #5066 (by Nathan Rusch) ci: Add CI test for MSVS 2026 #5060 (3.1.12.0, 3.0.17.0) ci: For security, replace workflow substitutions with safer env substitutions #5070 ci: Speed up slow benchmarks for debug and sanitizer CI tests #5077 ci: On Mac Intel CI variant, don't install openvdb, for speed #5065 (3.1.12.0, 3.0.17.0) ci: Bump GitHub Actions to latest versions #5078 #5110 #5119 ci: Fix broken Mac CI and wheel building by specifying full compiler paths #5100 #5101 (3.1.12.0, 3.0.17.0) ci: Update certificates to be able to install icc #5122 (3.1.12.0, 3.0.17.0) ci: Turn off nightly workflows for user forks #5042 tests: New ref outputs for tiff-misc, heif no-avif, and ffmpeg 8.1 cases #5075 #5079 #5099 #5112 docs: Updatedescription for dwaCompressionLevel #5074 (by Aamir Raza) docs: Fix formatting examples for version macros #5073 docs: Keep TextureSystem docs in sync with ImageCache #5085 (3.1.12.0, 3.0.17.0) docs: Fix typos and incorrect attribute name in a comment #5093 (3.1.12.0, 3.0.17.0) docs: Fix misstatement about oiiotool --if #5102 (3.1.12.0, 3.0.17.0) admin: Draft policy on use of AI coding assistants #5072 (3.1.12.0, 3.0.17.0) ci: Freetype adjustments #4999 Update to 5.1 (#2451401) Update to 5.0 (#2447841) -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 8 2026 Gwyn Ciesla - 1:3.1.12.0-2 - Libraw rebuild * Sat Apr 4 2026 Richard Shaw - 1:3.1.12.0-1 - Update to 3.1.12.0. -------------------------------------------------------------------------------- References: [ 1 ] Bug #2447841 - swayimg-.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2447841 [ 2 ] Bug #2451401 - swayimg-5.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2451401 [ 3 ] Bug #2454235 - CVE-2026-5318 LibRaw: LibRaw: Denial of Service via out-of-bounds write in JPEG DHT Parser [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2454235 [ 4 ] Bug #2454464 - CVE-2026-5342 LibRaw: LibRaw: Out-of-bounds read via `load_flags/raw_width` argument manipulation [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2454464 [ 5 ] Bug #2455346 - LibRaw-0.22.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2455346 [ 6 ] Bug #2456557 - CVE-2026-20884 LibRaw: LibRaw: Arbitrary code execution via integer overflow in deflate_dng_load_raw [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2456557 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-bef0050737' at the command line. For more information, refer to the dnf documentationavailable at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
An update that solves 20 vulnerabilities can now be installed.. # Security update for ImageMagick Announcement ID: SUSE-SU-2026:1203-1 Release Date: 2026-04-07T12:25:00Z Rating: important References: * bsc#1259446 * bsc#1259447 * bsc#1259448 * bsc#1259450 * bsc#1259451 * bsc#1259452 * bsc#1259455 * bsc#1259456 * bsc#1259457 * bsc#1259463 * bsc#1259464 * bsc#1259466 * bsc#1259467 * bsc#1259468 * bsc#1259497 * bsc#1259528 * bsc#1259612 * bsc#1259872 * bsc#1260874 * bsc#1260879 Cross-References: * CVE-2026-28493 * CVE-2026-28494 * CVE-2026-28686 * CVE-2026-28687 * CVE-2026-28688 * CVE-2026-28689 * CVE-2026-28690 * CVE-2026-28691 * CVE-2026-28692 * CVE-2026-28693 * CVE-2026-30883 * CVE-2026-30929 * CVE-2026-30935 * CVE-2026-30936 * CVE-2026-30937 * CVE-2026-31853 * CVE-2026-32259 * CVE-2026-32636 * CVE-2026-33535 * CVE-2026-33536 CVSS scores: * CVE-2026-28493 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-28493 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-28493 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-28494 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-28494 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-28494 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H * CVE-2026-28686 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-28686 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-28686 ( NVD ): 6.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-28687 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-28687 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-28687 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-28688 ( SUSE ): 5.9 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-28688 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-28688 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-28688 ( NVD ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-28689 ( SUSE ): 7.2 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-28689 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-28689 ( NVD ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-28690 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-28690 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-28690 ( NVD ): 6.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:H * CVE-2026-28690 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H * CVE-2026-28691 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-28691 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-28691 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-28692 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-28692 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-28692 ( NVD ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2026-28693 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-28693 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-28693 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-30883 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-30883 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-30883 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-30883 ( NVD ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-30929 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-30929 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-30929 ( NVD ): 7.7 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H * CVE-2026-30929 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-30935 ( SUSE ): 4.8 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-30935 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L * CVE-2026-30935 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L * CVE-2026-30936 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-30936 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-30936 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-30937 ( SUSE ): 7.0 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-30937 ( SUSE ): 6.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-30937 ( NVD ): 6.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-30937 ( NVD ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31853 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31853 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31853 ( NVD ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31853 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-32259 ( SUSE ): 5.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-32259 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H * CVE-2026-32259 ( NVD ): 6.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H * CVE-2026-32636 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-32636 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-32636 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-32636 ( NVD ): 5.3CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-33535 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-33535 ( NVD ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-33535 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33536 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-33536 ( SUSE ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H * CVE-2026-33536 ( NVD ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33536 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves 20 vulnerabilities can now be installed. ## Description: This update for ImageMagick fixes the following issues: * CVE-2026-28493: integer overflow in the SIXEL decoder leads to out-of-bounds write (bsc#1259446). * CVE-2026-28494: missing bounds checks in the morphology kernel parsing functions can lead to a stack buffer overflow (bsc#1259447). * CVE-2026-28686: undersized output buffer allocation in the PCL encoder can lead to a heap buffer overflow (bsc#1259448). * CVE-2026-28687: heap use-after-free vulnerability in the MSL decoder via a crafted MSL file (bsc#1259450). * CVE-2026-28688: heap use-after-free in the MSL encoder when a cloned image is destroyed twice (bsc#1259451). * CVE-2026-28689: `domain="path"` authorization is checked before final file open/use and allows for read/write bypass via symlink swaps (bsc#1259452). * CVE-2026-28690: missing bounds check in the MNG encoder can lead to a stack buffer overflow (bsc#1259456). * CVE-2026-28691: missing check in the JBIG decoder can lead to an uninitialized pointer dereference (bsc#1259455). * CVE-2026-28692: 32-bit integer overflow in MAT decoder can lead to a heap buffer over-read (bsc#1259457). * CVE-2026-28693: integer overflow in the DIB coder can lead to an out-of- bounds read or write (bsc#1259466). * CVE-2026-30883: missing bounds check when encoding a PNG image can lead to a heap buffer over-write (bsc#1259467). * CVE-2026-30929: improper use of fixed-size stack buffer in `MagnifyImage`can lead to a stack buffer overflow (bsc#1259468). * CVE-2026-30935: heap-based buffer over-read in BilateralBlurImage (bsc#1259497). * CVE-2026-30936: Heap Buffer Overflow in WaveletDenoiseImage (bsc#1259464). * CVE-2026-30937: Heap buffer overflow in XWD encoder due to CARD32 arithmetic overflow (bsc#1259463). * CVE-2026-31853: heap buffer overflow leads to crash in the SFW decoder of 32-bit systems when processing extremely large images (bsc#1259528). * CVE-2026-32259: memory allocation fails can lead to out of bound write (bsc#1259612). * CVE-2026-32636: Denial of Service via out-of-bounds write in NewXMLTree method (bsc#1259872). * CVE-2026-33535: Out-of-Bounds write of a zero byte in X11 display interaction (bsc#1260874). * CVE-2026-33536: Denial of Service via out-of-bounds write (bsc#1260879). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-1203=1 openSUSE-SLE-15.6-2026-1203=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-1203=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-1203=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * perl-PerlMagick-debuginfo-7.1.1.21-150600.3.50.1 * perl-PerlMagick-7.1.1.21-150600.3.50.1 * ImageMagick-config-7-upstream-websafe-7.1.1.21-150600.3.50.1 *ImageMagick-devel-7.1.1.21-150600.3.50.1 * ImageMagick-debuginfo-7.1.1.21-150600.3.50.1 * ImageMagick-extra-7.1.1.21-150600.3.50.1 * libMagickWand-7_Q16HDRI10-debuginfo-7.1.1.21-150600.3.50.1 * ImageMagick-config-7-upstream-secure-7.1.1.21-150600.3.50.1 * libMagick++-devel-7.1.1.21-150600.3.50.1 * ImageMagick-config-7-upstream-open-7.1.1.21-150600.3.50.1 * ImageMagick-extra-debuginfo-7.1.1.21-150600.3.50.1 * ImageMagick-config-7-SUSE-7.1.1.21-150600.3.50.1 * ImageMagick-config-7-upstream-limited-7.1.1.21-150600.3.50.1 * libMagick++-7_Q16HDRI5-debuginfo-7.1.1.21-150600.3.50.1 * libMagickCore-7_Q16HDRI10-7.1.1.21-150600.3.50.1 * libMagickCore-7_Q16HDRI10-debuginfo-7.1.1.21-150600.3.50.1 * ImageMagick-debugsource-7.1.1.21-150600.3.50.1 * ImageMagick-7.1.1.21-150600.3.50.1 * libMagick++-7_Q16HDRI5-7.1.1.21-150600.3.50.1 * libMagickWand-7_Q16HDRI10-7.1.1.21-150600.3.50.1 * openSUSE Leap 15.6 (x86_64) * libMagickWand-7_Q16HDRI10-32bit-debuginfo-7.1.1.21-150600.3.50.1 * ImageMagick-devel-32bit-7.1.1.21-150600.3.50.1 * libMagickCore-7_Q16HDRI10-32bit-debuginfo-7.1.1.21-150600.3.50.1 * libMagick++-7_Q16HDRI5-32bit-debuginfo-7.1.1.21-150600.3.50.1 * libMagick++-devel-32bit-7.1.1.21-150600.3.50.1 * libMagick++-7_Q16HDRI5-32bit-7.1.1.21-150600.3.50.1 * libMagickCore-7_Q16HDRI10-32bit-7.1.1.21-150600.3.50.1 * libMagickWand-7_Q16HDRI10-32bit-7.1.1.21-150600.3.50.1 * openSUSE Leap 15.6 (noarch) * ImageMagick-doc-7.1.1.21-150600.3.50.1 * openSUSE Leap 15.6 (aarch64_ilp32) * libMagick++-7_Q16HDRI5-64bit-7.1.1.21-150600.3.50.1 * libMagickWand-7_Q16HDRI10-64bit-debuginfo-7.1.1.21-150600.3.50.1 * libMagick++-devel-64bit-7.1.1.21-150600.3.50.1 * libMagickWand-7_Q16HDRI10-64bit-7.1.1.21-150600.3.50.1 * libMagickCore-7_Q16HDRI10-64bit-debuginfo-7.1.1.21-150600.3.50.1 * libMagickCore-7_Q16HDRI10-64bit-7.1.1.21-150600.3.50.1 * libMagick++-7_Q16HDRI5-64bit-debuginfo-7.1.1.21-150600.3.50.1 *ImageMagick-devel-64bit-7.1.1.21-150600.3.50.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * perl-PerlMagick-debuginfo-7.1.1.21-150600.3.50.1 * ImageMagick-config-7-upstream-websafe-7.1.1.21-150600.3.50.1 * ImageMagick-devel-7.1.1.21-150600.3.50.1 * ImageMagick-debuginfo-7.1.1.21-150600.3.50.1 * libMagickWand-7_Q16HDRI10-debuginfo-7.1.1.21-150600.3.50.1 * perl-PerlMagick-7.1.1.21-150600.3.50.1 * ImageMagick-config-7-upstream-secure-7.1.1.21-150600.3.50.1 * libMagick++-devel-7.1.1.21-150600.3.50.1 * ImageMagick-config-7-upstream-open-7.1.1.21-150600.3.50.1 * libMagickCore-7_Q16HDRI10-debuginfo-7.1.1.21-150600.3.50.1 * ImageMagick-config-7-SUSE-7.1.1.21-150600.3.50.1 * ImageMagick-config-7-upstream-limited-7.1.1.21-150600.3.50.1 * libMagick++-7_Q16HDRI5-debuginfo-7.1.1.21-150600.3.50.1 * libMagickCore-7_Q16HDRI10-7.1.1.21-150600.3.50.1 * ImageMagick-debugsource-7.1.1.21-150600.3.50.1 * ImageMagick-7.1.1.21-150600.3.50.1 * libMagick++-7_Q16HDRI5-7.1.1.21-150600.3.50.1 * libMagickWand-7_Q16HDRI10-7.1.1.21-150600.3.50.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * perl-PerlMagick-debuginfo-7.1.1.21-150600.3.50.1 * ImageMagick-config-7-upstream-websafe-7.1.1.21-150600.3.50.1 * ImageMagick-devel-7.1.1.21-150600.3.50.1 * ImageMagick-debuginfo-7.1.1.21-150600.3.50.1 * libMagickWand-7_Q16HDRI10-debuginfo-7.1.1.21-150600.3.50.1 * perl-PerlMagick-7.1.1.21-150600.3.50.1 * ImageMagick-config-7-upstream-secure-7.1.1.21-150600.3.50.1 * libMagick++-devel-7.1.1.21-150600.3.50.1 * ImageMagick-config-7-upstream-open-7.1.1.21-150600.3.50.1 * libMagickCore-7_Q16HDRI10-debuginfo-7.1.1.21-150600.3.50.1 * ImageMagick-config-7-SUSE-7.1.1.21-150600.3.50.1 * ImageMagick-config-7-upstream-limited-7.1.1.21-150600.3.50.1 * libMagick++-7_Q16HDRI5-debuginfo-7.1.1.21-150600.3.50.1 * libMagickCore-7_Q16HDRI10-7.1.1.21-150600.3.50.1 *ImageMagick-debugsource-7.1.1.21-150600.3.50.1 * ImageMagick-7.1.1.21-150600.3.50.1 * libMagick++-7_Q16HDRI5-7.1.1.21-150600.3.50.1 * libMagickWand-7_Q16HDRI10-7.1.1.21-150600.3.50.1 ## References: * https://www.suse.com/security/cve/CVE-2026-28493.html * https://www.suse.com/security/cve/CVE-2026-28494.html * https://www.suse.com/security/cve/CVE-2026-28686.html * https://www.suse.com/security/cve/CVE-2026-28687.html * https://www.suse.com/security/cve/CVE-2026-28688.html * https://www.suse.com/security/cve/CVE-2026-28689.html * https://www.suse.com/security/cve/CVE-2026-28690.html * https://www.suse.com/security/cve/CVE-2026-28691.html * https://www.suse.com/security/cve/CVE-2026-28692.html * https://www.suse.com/security/cve/CVE-2026-28693.html * https://www.suse.com/security/cve/CVE-2026-30883.html * https://www.suse.com/security/cve/CVE-2026-30929.html * https://www.suse.com/security/cve/CVE-2026-30935.html * https://www.suse.com/security/cve/CVE-2026-30936.html * https://www.suse.com/security/cve/CVE-2026-30937.html * https://www.suse.com/security/cve/CVE-2026-31853.html * https://www.suse.com/security/cve/CVE-2026-32259.html * https://www.suse.com/security/cve/CVE-2026-32636.html * https://www.suse.com/security/cve/CVE-2026-33535.html * https://www.suse.com/security/cve/CVE-2026-33536.html * https://bugzilla.suse.com/show_bug.cgi?id=1259446 * https://bugzilla.suse.com/show_bug.cgi?id=1259447 * https://bugzilla.suse.com/show_bug.cgi?id=1259448 * https://bugzilla.suse.com/show_bug.cgi?id=1259450 * https://bugzilla.suse.com/show_bug.cgi?id=1259451 * https://bugzilla.suse.com/show_bug.cgi?id=1259452 * https://bugzilla.suse.com/show_bug.cgi?id=1259455 * https://bugzilla.suse.com/show_bug.cgi?id=1259456 * https://bugzilla.suse.com/show_bug.cgi?id=1259457 * https://bugzilla.suse.com/show_bug.cgi?id=1259463 * https://bugzilla.suse.com/show_bug.cgi?id=1259464 * https://bugzilla.suse.com/show_bug.cgi?id=1259466 *https://bugzilla.suse.com/show_bug.cgi?id=1259467 * https://bugzilla.suse.com/show_bug.cgi?id=1259468 * https://bugzilla.suse.com/show_bug.cgi?id=1259497 * https://bugzilla.suse.com/show_bug.cgi?id=1259528 * https://bugzilla.suse.com/show_bug.cgi?id=1259612 * https://bugzilla.suse.com/show_bug.cgi?id=1259872 * https://bugzilla.suse.com/show_bug.cgi?id=1260874 * https://bugzilla.suse.com/show_bug.cgi?id=1260879 . Critical update addresses 20 security flaws in ImageMagick for openSUSE ensuring system integrity and performance.. ImageMagick security, openSUSE vulnerabilities, buffer overflow, important security update. . Severity: Important. LinuxSecurity.com Team
Multiple vulnerabilities have been found in Pillow, an image processing library for Python. CVE-2021-23437 The getrgb function is susceptible to a ReDoS. CVE-2022-24303. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4462-1
An update that solves six vulnerabilities can now be installed.. # Security update for ImageMagick Announcement ID: SUSE-SU-2025:21211-1 Release Date: 2025-12-15T09:55:25Z Rating: important References: * bsc#1248767 * bsc#1248780 * bsc#1248784 * bsc#1249362 * bsc#1252282 * bsc#1252749 Cross-References: * CVE-2025-55212 * CVE-2025-55298 * CVE-2025-57803 * CVE-2025-57807 * CVE-2025-62171 * CVE-2025-62594 CVSS scores: * CVE-2025-55212 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-55212 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2025-55212 ( NVD ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-55212 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-55298 ( SUSE ): 9.0 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2025-55298 ( SUSE ): 8.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2025-55298 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-55298 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-57803 ( SUSE ): 9.0 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2025-57803 ( SUSE ): 8.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2025-57803 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-57803 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-57807 ( SUSE ): 1.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2025-57807 ( SUSE ): 4.2 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L * CVE-2025-57807 ( NVD ): 3.8 CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L * CVE-2025-57807 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-62171 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-62171 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2025-62171 ( NVD ): 5.9CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-62171 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-62594 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-62594 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H * CVE-2025-62594 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2025-62594 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP Applications 16.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for ImageMagick fixes the following issues: * CVE-2025-62594: unsigned underflow and division-by-zero can lead to OOB pointer arithmetic and process crash (bsc#1252749). * CVE-2025-57807: BlobStream Forward-Seek Under-Allocation (bsc#1249362). * CVE-2025-62171: incomplete fix for integer overflow in BMP Decoder (bsc#1252282). * CVE-2025-55298: format string bug vulnerability can lead to heap overflow (bsc#1248780). * CVE-2025-57803: 32-bit integer overflow can lead to heap out-of-bounds (OOB) write (bsc#1248784). * CVE-2025-55212: division-by-zero in ThumbnailImage() when passing a geometry string containing only a colon to `montage -geometry` (bsc#1248767). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-105=1 * SUSE Linux Enterprise Server for SAP Applications 16.0 zypper in -t patch SUSE-SLES-16.0-105=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * ImageMagick-debugsource-7.1.2.0-160000.4.1 * libMagickCore-7_Q16HDRI10-7.1.2.0-160000.4.1 * perl-PerlMagick-7.1.2.0-160000.4.1 *libMagickWand-7_Q16HDRI10-7.1.2.0-160000.4.1 * libMagick++-7_Q16HDRI5-debuginfo-7.1.2.0-160000.4.1 * libMagickCore-7_Q16HDRI10-debuginfo-7.1.2.0-160000.4.1 * ImageMagick-7.1.2.0-160000.4.1 * ImageMagick-extra-7.1.2.0-160000.4.1 * libMagick++-devel-7.1.2.0-160000.4.1 * ImageMagick-debuginfo-7.1.2.0-160000.4.1 * ImageMagick-extra-debuginfo-7.1.2.0-160000.4.1 * ImageMagick-devel-7.1.2.0-160000.4.1 * libMagickWand-7_Q16HDRI10-debuginfo-7.1.2.0-160000.4.1 * perl-PerlMagick-debuginfo-7.1.2.0-160000.4.1 * libMagick++-7_Q16HDRI5-7.1.2.0-160000.4.1 * SUSE Linux Enterprise Server 16.0 (noarch) * ImageMagick-config-7-upstream-secure-7.1.2.0-160000.4.1 * ImageMagick-config-7-SUSE-7.1.2.0-160000.4.1 * ImageMagick-doc-7.1.2.0-160000.4.1 * ImageMagick-config-7-upstream-open-7.1.2.0-160000.4.1 * ImageMagick-config-7-upstream-websafe-7.1.2.0-160000.4.1 * ImageMagick-config-7-upstream-limited-7.1.2.0-160000.4.1 * SUSE Linux Enterprise Server for SAP Applications 16.0 (ppc64le x86_64) * ImageMagick-debugsource-7.1.2.0-160000.4.1 * libMagickCore-7_Q16HDRI10-7.1.2.0-160000.4.1 * perl-PerlMagick-7.1.2.0-160000.4.1 * libMagickWand-7_Q16HDRI10-7.1.2.0-160000.4.1 * libMagick++-7_Q16HDRI5-debuginfo-7.1.2.0-160000.4.1 * libMagickCore-7_Q16HDRI10-debuginfo-7.1.2.0-160000.4.1 * ImageMagick-7.1.2.0-160000.4.1 * ImageMagick-extra-7.1.2.0-160000.4.1 * libMagick++-devel-7.1.2.0-160000.4.1 * ImageMagick-debuginfo-7.1.2.0-160000.4.1 * ImageMagick-extra-debuginfo-7.1.2.0-160000.4.1 * ImageMagick-devel-7.1.2.0-160000.4.1 * libMagickWand-7_Q16HDRI10-debuginfo-7.1.2.0-160000.4.1 * perl-PerlMagick-debuginfo-7.1.2.0-160000.4.1 * libMagick++-7_Q16HDRI5-7.1.2.0-160000.4.1 * SUSE Linux Enterprise Server for SAP Applications 16.0 (noarch) * ImageMagick-config-7-upstream-secure-7.1.2.0-160000.4.1 * ImageMagick-config-7-SUSE-7.1.2.0-160000.4.1 * ImageMagick-doc-7.1.2.0-160000.4.1 *ImageMagick-config-7-upstream-open-7.1.2.0-160000.4.1 * ImageMagick-config-7-upstream-websafe-7.1.2.0-160000.4.1 * ImageMagick-config-7-upstream-limited-7.1.2.0-160000.4.1 ## References: * https://www.suse.com/security/cve/CVE-2025-55212.html * https://www.suse.com/security/cve/CVE-2025-55298.html * https://www.suse.com/security/cve/CVE-2025-57803.html * https://www.suse.com/security/cve/CVE-2025-57807.html * https://www.suse.com/security/cve/CVE-2025-62171.html * https://www.suse.com/security/cve/CVE-2025-62594.html * https://bugzilla.suse.com/show_bug.cgi?id=1248767 * https://bugzilla.suse.com/show_bug.cgi?id=1248780 * https://bugzilla.suse.com/show_bug.cgi?id=1248784 * https://bugzilla.suse.com/show_bug.cgi?id=1249362 * https://bugzilla.suse.com/show_bug.cgi?id=1252282 * https://bugzilla.suse.com/show_bug.cgi?id=1252749 . SUSE releases important security update for ImageMagick to fix six vulnerabilities, enhancing system integrity and safety.. ImageMagick security, SUSE patch, system vulnerabilities, software integrity, Linux server update. . Severity: Important. LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.