Security update for ImageMagick SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2018:0349-1 Final 1 1 2018-02-02T09:41:01Z current 2018-02-02T09:41:01Z 2018-02-02T09:41:01Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for ImageMagick This update for ImageMagick fixes several issues. These security issues were fixed: - CVE-2017-18027: Prevent memory leak vulnerability in the function ReadMATImage which allowed remote attackers to cause a denial of service via a crafted file (bsc#1076051) - CVE-2017-18029: Prevent memory leak in the function ReadMATImage which allowed remote attackers to cause a denial of service via a crafted file (bsc#1076021) - CVE-2017-17681: Prevent infinite loop in the function ReadPSDChannelZip in coders/psd.c, which allowed attackers to cause a denial of service (CPU exhaustion) via a crafted psd image file (bsc#1072901). - CVE-2017-18008: Prevent memory Leak in ReadPWPImage which allowed attackers to cause a denial of service via a PWP file (bsc#1074309). - CVE-2018-5685: Prevent infinite loop and application hang in the ReadBMPImage function. Remote attackers could leverage this vulnerability to cause a denial of service via an image file with a crafted bit-field mask value (bsc#1075939) - CVE-2017-11639: Prevent heap-based buffer over-read in the WriteCIPImage() function, related to the GetPixelLuma function in MagickCore/pixel-accessor.h (bsc#1050635) - CVE-2017-11525: Prevent memory consumption in the ReadCINImage function that allowed remote attackers to cause a denial of service (bsc#1050098) - CVE-2017-9262: The ReadJNGImage function in coders/png.c allowed attackers to cause a denial of service (memory leak) via a crafted file (bsc#1043353). - CVE-2017-9261: The ReadMNGImage function in coders/png.c allowed attackers to cause a denial of service (memory leak) via a crafted file (bsc#1043354). - CVE-2017-10995: The mng_get_long function in coders/png.c allowed remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted MNG image (bsc#1047908). - CVE-2017-11539: Prevent memory leak in the ReadOnePNGImage() function in coders/png.c (bsc#1050037). - CVE-2017-11505: The ReadOneJNGImage function in coders/png.c allowed remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted file (bsc#1050072). - CVE-2017-11526: The ReadOneMNGImage function in coders/png.c allowed remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted file (bsc#1050100). - CVE-2017-11750: The ReadOneJNGImage function in coders/png.c allowed remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file (bsc#1051442). - CVE-2017-12565: Prevent memory leak in the function ReadOneJNGImage in coders/png.c, which allowed attackers to cause a denial of service (bsc#1052470). - CVE-2017-12676: Prevent memory leak in the function ReadOneJNGImage in coders/png.c, which allowed attackers to cause a denial of service (bsc#1052708). - CVE-2017-12673: Prevent memory leak in the function ReadOneMNGImage in coders/png.c, which allowed attackers to cause a denial of service (bsc#1052717). - CVE-2017-12671: Added NULL assignment in coders/png.c to prevent an invalid free in the function RelinquishMagickMemory in MagickCore/memory.c, which allowed attackers to cause a denial of service (bsc#1052721). - CVE-2017-12643: Prevent a memory exhaustion vulnerability in ReadOneJNGImage in coders\png.c (bsc#1052768). - CVE-2017-12641: Prevent a memory leak vulnerability in ReadOneJNGImage in coders\png.c (bsc#1052777). - CVE-2017-12640: Prevent an out-of-bounds read vulnerability in ReadOneMNGImage in coders/png.c (bsc#1052781). - CVE-2017-12935: The ReadMNGImage function in coders/png.c mishandled large MNG images, leading to an invalid memory read in the SetImageColorCallBack function in magick/image.c (bsc#1054600). - CVE-2017-13059: Prevent memory leak in the function WriteOneJNGImage in coders/png.c, which allowed attackers to cause a denial of service (WriteJNGImage memory consumption) via a crafted file (bsc#1055068). - CVE-2017-13147: Prevent allocation failure in the function ReadMNGImage in coders/png.c when a small MNG file has a MEND chunk with a large length value (bsc#1055374). - CVE-2017-13142: Added additional checks for short files to prevent a crafted PNG file from triggering a crash (bsc#1055455). - CVE-2017-13141: Prevent memory leak in ReadOnePNGImage in coders/png.c (bsc#1055456). - CVE-2017-14103: The ReadJNGImage and ReadOneJNGImage functions in coders/png.c did not properly manage image pointers after certain error conditions, which allowed remote attackers to conduct use-after-free attacks via a crafted file, related to a ReadMNGImage out-of-order CloseBlob call (bsc#1057000). - CVE-2017-14649: ReadOneJNGImage in coders/png.c did not properly validate JNG data, leading to a denial of service (assertion failure in magick/pixel_cache.c, and application crash) (bsc#1060162). - CVE-2017-15218: Prevent memory leak in ReadOneJNGImage in coders/png.c (bsc#1062752). - CVE-2017-17504: Prevent heap-based buffer over-read via a crafted file in Magick_png_read_raw_profile, related to ReadOneMNGImage (bsc#1072362). - CVE-2017-17884: Prevent memory leak in the function WriteOnePNGImage in coders/png.c, which allowed attackers to cause a denial of service via a crafted PNG image file (bsc#1074120). - CVE-2017-17879: Prevent heap-based buffer over-read in ReadOneMNGImage in coders/png.c, related to length calculation and caused by an off-by-one error (bsc#1074125). - CVE-2017-17914: Prevent crafted files to cause a large loop in ReadOneMNGImage (bsc#1074185). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-SLE-DESKTOP-12-SP2-2018-244,SUSE-SLE-DESKTOP-12-SP3-2018-244,SUSE-SLE-RPI-12-SP2-2018-244,SUSE-SLE-SDK-12-SP2-2018-244,SUSE-SLE-SDK-12-SP3-2018-244,SUSE-SLE-SERVER-12-SP2-2018-244,SUSE-SLE-SERVER-12-SP3-2018-244,SUSE-SLE-WE-12-SP2-2018-244,SUSE-SLE-WE-12-SP3-2018-244 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ Link for SUSE-SU-2018:0349-1 https://lists.suse.com/pipermail/sle-security-updates/2018-February/003702.html E-Mail link for SUSE-SU-2018:0349-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1043353 SUSE Bug 1043353 https://bugzilla.suse.com/1043354 SUSE Bug 1043354 https://bugzilla.suse.com/1047908 SUSE Bug 1047908 https://bugzilla.suse.com/1050037 SUSE Bug 1050037 https://bugzilla.suse.com/1050072 SUSE Bug 1050072 https://bugzilla.suse.com/1050098 SUSE Bug 1050098 https://bugzilla.suse.com/1050100 SUSE Bug 1050100 https://bugzilla.suse.com/1050635 SUSE Bug 1050635 https://bugzilla.suse.com/1051442 SUSE Bug 1051442 https://bugzilla.suse.com/1052470 SUSE Bug 1052470 https://bugzilla.suse.com/1052708 SUSE Bug 1052708 https://bugzilla.suse.com/1052717 SUSE Bug 1052717 https://bugzilla.suse.com/1052721 SUSE Bug 1052721 https://bugzilla.suse.com/1052768 SUSE Bug 1052768 https://bugzilla.suse.com/1052777 SUSE Bug 1052777 https://bugzilla.suse.com/1052781 SUSE Bug 1052781 https://bugzilla.suse.com/1054600 SUSE Bug 1054600 https://bugzilla.suse.com/1055068 SUSE Bug 1055068 https://bugzilla.suse.com/1055374 SUSE Bug 1055374 https://bugzilla.suse.com/1055455 SUSE Bug 1055455 https://bugzilla.suse.com/1055456 SUSE Bug 1055456 https://bugzilla.suse.com/1057000 SUSE Bug 1057000 https://bugzilla.suse.com/1060162 SUSE Bug 1060162 https://bugzilla.suse.com/1062752 SUSE Bug 1062752 https://bugzilla.suse.com/1072362 SUSE Bug 1072362 https://bugzilla.suse.com/1072901 SUSE Bug 1072901 https://bugzilla.suse.com/1074120 SUSE Bug 1074120 https://bugzilla.suse.com/1074125 SUSE Bug 1074125 https://bugzilla.suse.com/1074185 SUSE Bug 1074185 https://bugzilla.suse.com/1074309 SUSE Bug 1074309 https://bugzilla.suse.com/1075939 SUSE Bug 1075939 https://bugzilla.suse.com/1076021 SUSE Bug 1076021 https://bugzilla.suse.com/1076051 SUSE Bug 1076051 https://www.suse.com/security/cve/CVE-2017-10995/ SUSE CVE CVE-2017-10995 page https://www.suse.com/security/cve/CVE-2017-11505/ SUSE CVE CVE-2017-11505 page https://www.suse.com/security/cve/CVE-2017-11525/ SUSE CVE CVE-2017-11525 page https://www.suse.com/security/cve/CVE-2017-11526/ SUSE CVE CVE-2017-11526 page https://www.suse.com/security/cve/CVE-2017-11539/ SUSE CVE CVE-2017-11539 page https://www.suse.com/security/cve/CVE-2017-11639/ SUSE CVE CVE-2017-11639 page https://www.suse.com/security/cve/CVE-2017-11750/ SUSE CVE CVE-2017-11750 page https://www.suse.com/security/cve/CVE-2017-12565/ SUSE CVE CVE-2017-12565 page https://www.suse.com/security/cve/CVE-2017-12640/ SUSE CVE CVE-2017-12640 page https://www.suse.com/security/cve/CVE-2017-12641/ SUSE CVE CVE-2017-12641 page https://www.suse.com/security/cve/CVE-2017-12643/ SUSE CVE CVE-2017-12643 page https://www.suse.com/security/cve/CVE-2017-12671/ SUSE CVE CVE-2017-12671 page https://www.suse.com/security/cve/CVE-2017-12673/ SUSE CVE CVE-2017-12673 page https://www.suse.com/security/cve/CVE-2017-12676/ SUSE CVE CVE-2017-12676 page https://www.suse.com/security/cve/CVE-2017-12935/ SUSE CVE CVE-2017-12935 page https://www.suse.com/security/cve/CVE-2017-13059/ SUSE CVE CVE-2017-13059 page https://www.suse.com/security/cve/CVE-2017-13141/ SUSE CVE CVE-2017-13141 page https://www.suse.com/security/cve/CVE-2017-13142/ SUSE CVE CVE-2017-13142 page https://www.suse.com/security/cve/CVE-2017-13147/ SUSE CVE CVE-2017-13147 page https://www.suse.com/security/cve/CVE-2017-14103/ SUSE CVE CVE-2017-14103 page https://www.suse.com/security/cve/CVE-2017-14649/ SUSE CVE CVE-2017-14649 page https://www.suse.com/security/cve/CVE-2017-15218/ SUSE CVE CVE-2017-15218 page https://www.suse.com/security/cve/CVE-2017-17504/ SUSE CVE CVE-2017-17504 page https://www.suse.com/security/cve/CVE-2017-17681/ SUSE CVE CVE-2017-17681 page https://www.suse.com/security/cve/CVE-2017-17879/ SUSE CVE CVE-2017-17879 page https://www.suse.com/security/cve/CVE-2017-17884/ SUSE CVE CVE-2017-17884 page https://www.suse.com/security/cve/CVE-2017-17914/ SUSE CVE CVE-2017-17914 page https://www.suse.com/security/cve/CVE-2017-18008/ SUSE CVE CVE-2017-18008 page https://www.suse.com/security/cve/CVE-2017-18027/ SUSE CVE CVE-2017-18027 page https://www.suse.com/security/cve/CVE-2017-18029/ SUSE CVE CVE-2017-18029 page https://www.suse.com/security/cve/CVE-2017-9261/ SUSE CVE CVE-2017-9261 page https://www.suse.com/security/cve/CVE-2017-9262/ SUSE CVE CVE-2017-9262 page https://www.suse.com/security/cve/CVE-2018-5246/ SUSE CVE CVE-2018-5246 page https://www.suse.com/security/cve/CVE-2018-5685/ SUSE CVE CVE-2018-5685 page SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 ImageMagick-6.8.8.1-71.33.1 libMagick++-6_Q16-3-6.8.8.1-71.33.1 libMagickCore-6_Q16-1-6.8.8.1-71.33.1 libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 libMagickWand-6_Q16-1-6.8.8.1-71.33.1 ImageMagick-devel-6.8.8.1-71.33.1 libMagick++-devel-6.8.8.1-71.33.1 perl-PerlMagick-6.8.8.1-71.33.1 ImageMagick-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Desktop 12 SP2 libMagick++-6_Q16-3-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Desktop 12 SP2 libMagickCore-6_Q16-1-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Desktop 12 SP2 libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Desktop 12 SP2 libMagickWand-6_Q16-1-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Desktop 12 SP2 ImageMagick-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Desktop 12 SP3 libMagick++-6_Q16-3-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Desktop 12 SP3 libMagickCore-6_Q16-1-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Desktop 12 SP3 libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Desktop 12 SP3 libMagickWand-6_Q16-1-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Desktop 12 SP3 libMagickCore-6_Q16-1-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Server 12 SP2 libMagickWand-6_Q16-1-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Server 12 SP2 libMagickCore-6_Q16-1-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Server 12 SP3 libMagickWand-6_Q16-1-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Server 12 SP3 libMagickCore-6_Q16-1-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 libMagickWand-6_Q16-1-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 libMagickCore-6_Q16-1-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 libMagickWand-6_Q16-1-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 libMagickCore-6_Q16-1-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 libMagickWand-6_Q16-1-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 ImageMagick-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 ImageMagick-devel-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 libMagick++-6_Q16-3-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 libMagick++-devel-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 perl-PerlMagick-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 ImageMagick-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP3 ImageMagick-devel-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP3 libMagick++-6_Q16-3-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP3 libMagick++-devel-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP3 perl-PerlMagick-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP3 ImageMagick-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP2 libMagick++-6_Q16-3-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP2 libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP2 ImageMagick-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP3 libMagick++-6_Q16-3-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP3 libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP3 The mng_get_long function in coders/png.c in ImageMagick 7.0.6-0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted MNG image. CVE-2017-10995 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-10995.html CVE-2017-10995 https://bugzilla.suse.com/1047908 SUSE Bug 1047908 The ReadOneJNGImage function in coders/png.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a malformed JNG file. CVE-2017-11505 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-11505.html CVE-2017-11505 https://bugzilla.suse.com/1050072 SUSE Bug 1050072 https://bugzilla.suse.com/1050100 SUSE Bug 1050100 The ReadCINImage function in coders/cin.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (memory consumption) via a crafted file. CVE-2017-11525 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-11525.html CVE-2017-11525 https://bugzilla.suse.com/1050098 SUSE Bug 1050098 The ReadOneMNGImage function in coders/png.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted file. CVE-2017-11526 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-11526.html CVE-2017-11526 https://bugzilla.suse.com/1050072 SUSE Bug 1050072 https://bugzilla.suse.com/1050100 SUSE Bug 1050100 When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the ReadOnePNGImage() function in coders/png.c. CVE-2017-11539 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-11539.html CVE-2017-11539 https://bugzilla.suse.com/1050037 SUSE Bug 1050037 When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WriteCIPImage() function in coders/cip.c, related to the GetPixelLuma function in MagickCore/pixel-accessor.h. CVE-2017-11639 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 6.4 AV:N/AC:L/Au:N/C:P/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-11639.html CVE-2017-11639 https://bugzilla.suse.com/1050635 SUSE Bug 1050635 The ReadOneJNGImage function in coders/png.c in ImageMagick 6.9.9-4 and 7.0.6-4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file. CVE-2017-11750 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-11750.html CVE-2017-11750 https://bugzilla.suse.com/1047910 SUSE Bug 1047910 https://bugzilla.suse.com/1051442 SUSE Bug 1051442 In ImageMagick 7.0.6-2, a memory leak vulnerability was found in the function ReadOneJNGImage in coders/png.c, which allows attackers to cause a denial of service. CVE-2017-12565 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-12565.html CVE-2017-12565 https://bugzilla.suse.com/1047910 SUSE Bug 1047910 https://bugzilla.suse.com/1052470 SUSE Bug 1052470 ImageMagick 7.0.6-1 has an out-of-bounds read vulnerability in ReadOneMNGImage in coders/png.c. CVE-2017-12640 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 6.4 AV:N/AC:L/Au:N/C:P/I:N/A:P 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-12640.html CVE-2017-12640 https://bugzilla.suse.com/1052781 SUSE Bug 1052781 ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadOneJNGImage in coders\png.c. CVE-2017-12641 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-12641.html CVE-2017-12641 https://bugzilla.suse.com/1052777 SUSE Bug 1052777 ImageMagick 7.0.6-1 has a memory exhaustion vulnerability in ReadOneJNGImage in coders\png.c. CVE-2017-12643 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-12643.html CVE-2017-12643 https://bugzilla.suse.com/1052768 SUSE Bug 1052768 In ImageMagick 7.0.6-3, a missing NULL assignment was found in coders/png.c, leading to an invalid free in the function RelinquishMagickMemory in MagickCore/memory.c, which allows attackers to cause a denial of service. CVE-2017-12671 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-12671.html CVE-2017-12671 https://bugzilla.suse.com/1052721 SUSE Bug 1052721 In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneMNGImage in coders/png.c, which allows attackers to cause a denial of service. CVE-2017-12673 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-12673.html CVE-2017-12673 https://bugzilla.suse.com/1052717 SUSE Bug 1052717 In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneJNGImage in coders/png.c, which allows attackers to cause a denial of service. CVE-2017-12676 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-12676.html CVE-2017-12676 https://bugzilla.suse.com/1052708 SUSE Bug 1052708 The ReadMNGImage function in coders/png.c in GraphicsMagick 1.3.26 mishandles large MNG images, leading to an invalid memory read in the SetImageColorCallBack function in magick/image.c. CVE-2017-12935 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-12935.html CVE-2017-12935 https://bugzilla.suse.com/1054598 SUSE Bug 1054598 https://bugzilla.suse.com/1054600 SUSE Bug 1054600 In ImageMagick 7.0.6-6, a memory leak vulnerability was found in the function WriteOneJNGImage in coders/png.c, which allows attackers to cause a denial of service (WriteJNGImage memory consumption) via a crafted file. CVE-2017-13059 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-13059.html CVE-2017-13059 https://bugzilla.suse.com/1055068 SUSE Bug 1055068 In ImageMagick before 6.9.9-4 and 7.x before 7.0.6-4, a crafted file could trigger a memory leak in ReadOnePNGImage in coders/png.c. CVE-2017-13141 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-13141.html CVE-2017-13141 https://bugzilla.suse.com/1055456 SUSE Bug 1055456 https://bugzilla.suse.com/1060162 SUSE Bug 1060162 In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, a crafted PNG file could trigger a crash because there was an insufficient check for short files. CVE-2017-13142 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-13142.html CVE-2017-13142 https://bugzilla.suse.com/1055455 SUSE Bug 1055455 In GraphicsMagick 1.3.26, an allocation failure vulnerability was found in the function ReadMNGImage in coders/png.c when a small MNG file has a MEND chunk with a large length value. CVE-2017-13147 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-13147.html CVE-2017-13147 https://bugzilla.suse.com/1055374 SUSE Bug 1055374 The ReadJNGImage and ReadOneJNGImage functions in coders/png.c in GraphicsMagick 1.3.26 do not properly manage image pointers after certain error conditions, which allows remote attackers to conduct use-after-free attacks via a crafted file, related to a ReadMNGImage out-of-order CloseBlob call. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-11403. CVE-2017-14103 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-14103.html CVE-2017-14103 https://bugzilla.suse.com/1057000 SUSE Bug 1057000 ReadOneJNGImage in coders/png.c in GraphicsMagick version 1.3.26 does not properly validate JNG data, leading to a denial of service (assertion failure in magick/pixel_cache.c, and application crash). CVE-2017-14649 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-14649.html CVE-2017-14649 https://bugzilla.suse.com/1060162 SUSE Bug 1060162 ImageMagick 7.0.7-2 has a memory leak in ReadOneJNGImage in coders/png.c. CVE-2017-15218 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-15218.html CVE-2017-15218 https://bugzilla.suse.com/1047910 SUSE Bug 1047910 https://bugzilla.suse.com/1062752 SUSE Bug 1062752 ImageMagick before 7.0.7-12 has a coders/png.c Magick_png_read_raw_profile heap-based buffer over-read via a crafted file, related to ReadOneMNGImage. CVE-2017-17504 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-17504.html CVE-2017-17504 https://bugzilla.suse.com/1072362 SUSE Bug 1072362 In ImageMagick 7.0.7-12 Q16, an infinite loop vulnerability was found in the function ReadPSDChannelZip in coders/psd.c, which allows attackers to cause a denial of service (CPU exhaustion) via a crafted psd image file. CVE-2017-17681 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-17681.html CVE-2017-17681 https://bugzilla.suse.com/1072901 SUSE Bug 1072901 In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-21, there is a heap-based buffer over-read in ReadOneMNGImage in coders/png.c, related to length calculation and caused by an off-by-one error. CVE-2017-17879 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-17879.html CVE-2017-17879 https://bugzilla.suse.com/1074125 SUSE Bug 1074125 https://bugzilla.suse.com/1074175 SUSE Bug 1074175 In ImageMagick 7.0.7-16 Q16, a memory leak vulnerability was found in the function WriteOnePNGImage in coders/png.c, which allows attackers to cause a denial of service via a crafted PNG image file. CVE-2017-17884 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-17884.html CVE-2017-17884 https://bugzilla.suse.com/1074120 SUSE Bug 1074120 In ImageMagick 7.0.7-16 Q16, a vulnerability was found in the function ReadOnePNGImage in coders/png.c, which allows attackers to cause a denial of service (ReadOneMNGImage large loop) via a crafted mng image file. CVE-2017-17914 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-17914.html CVE-2017-17914 https://bugzilla.suse.com/1074185 SUSE Bug 1074185 In ImageMagick 7.0.7-17 Q16, there is a Memory Leak in ReadPWPImage in coders/pwp.c. CVE-2017-18008 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-18008.html CVE-2017-18008 https://bugzilla.suse.com/1074309 SUSE Bug 1074309 In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allow remote attackers to cause a denial of service via a crafted file. CVE-2017-18027 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-18027.html CVE-2017-18027 https://bugzilla.suse.com/1076051 SUSE Bug 1076051 In ImageMagick 7.0.6-10 Q16, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allow remote attackers to cause a denial of service via a crafted file. CVE-2017-18029 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-18029.html CVE-2017-18029 https://bugzilla.suse.com/1076021 SUSE Bug 1076021 https://bugzilla.suse.com/1076051 SUSE Bug 1076051 In ImageMagick 7.0.5-6 Q16, the ReadMNGImage function in coders/png.c allows attackers to cause a denial of service (memory leak) via a crafted file. CVE-2017-9261 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-9261.html CVE-2017-9261 https://bugzilla.suse.com/1043354 SUSE Bug 1043354 In ImageMagick 7.0.5-6 Q16, the ReadJNGImage function in coders/png.c allows attackers to cause a denial of service (memory leak) via a crafted file. CVE-2017-9262 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2017-9262.html CVE-2017-9262 https://bugzilla.suse.com/1043353 SUSE Bug 1043353 In ImageMagick 7.0.7-17 Q16, there are memory leaks in ReadPATTERNImage in coders/pattern.c. CVE-2018-5246 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2018-5246.html CVE-2018-5246 https://bugzilla.suse.com/1074973 SUSE Bug 1074973 In GraphicsMagick 1.3.27, there is an infinite loop and application hang in the ReadBMPImage function (coders/bmp.c). Remote attackers could leverage this vulnerability to cause a denial of service via an image file with a crafted bit-field mask value. CVE-2018-5685 SUSE Linux Enterprise Desktop 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Desktop 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickCore-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libMagickWand-6_Q16-1-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP2:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:ImageMagick-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:libMagick++-devel-6.8.8.1-71.33.1 SUSE Linux Enterprise Software Development Kit 12 SP3:perl-PerlMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:ImageMagick-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagick++-6_Q16-3-6.8.8.1-71.33.1 SUSE Linux Enterprise Workstation Extension 12 SP3:libMagickCore-6_Q16-1-32bit-6.8.8.1-71.33.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20180349-1/ https://www.suse.com/security/cve/CVE-2018-5685.html CVE-2018-5685 https://bugzilla.suse.com/1075939 SUSE Bug 1075939