{"affected":[{"ecosystem_specific":{"binaries":[{"ImageMagick-config-7-upstream":"7.1.0.9-150400.6.61.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Desktop Applications 15 SP7","name":"ImageMagick","purl":"pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"7.1.0.9-150400.6.61.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for ImageMagick fixes the following issues:\n\n- CVE-2025-68618: read a malicious SVG file may result in a DoS attack (bsc#1255821).\n- CVE-2025-68950: check for circular references in mvg files may lead to stack overflow (bsc#1255822). \n","id":"SUSE-SU-2026:0072-1","modified":"2026-01-08T13:22:28Z","published":"2026-01-08T13:22:28Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2026/suse-su-20260072-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1255821"},{"type":"REPORT","url":"https://bugzilla.suse.com/1255822"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-68618"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-68950"}],"related":["CVE-2025-68618","CVE-2025-68950"],"summary":"Security update for ImageMagick","upstream":["CVE-2025-68618","CVE-2025-68950"]}