Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2014-9811 (GCVE-0-2014-9811)
Vulnerability from cvelistv5
Published
2017-03-30 15:00
Modified
2024-08-06 13:55
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T13:55:04.753Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=82a5bbdd47b9b3f43ce3c2aa18741aecc4a0f962"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1343467"
},
{
"name": "[oss-security] 20160602 Re: ImageMagick CVEs",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2016/06/02/13"
},
{
"name": "[oss-security] 20141224 Imagemagick fuzzing bug",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2014/12/24/1"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=914da276f717b3e21e5af6614887af14af87a9b8"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2014-12-24T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-03-30T14:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=82a5bbdd47b9b3f43ce3c2aa18741aecc4a0f962"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1343467"
},
{
"name": "[oss-security] 20160602 Re: ImageMagick CVEs",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2016/06/02/13"
},
{
"name": "[oss-security] 20141224 Imagemagick fuzzing bug",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2014/12/24/1"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=914da276f717b3e21e5af6614887af14af87a9b8"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2014-9811",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=82a5bbdd47b9b3f43ce3c2aa18741aecc4a0f962",
"refsource": "CONFIRM",
"url": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=82a5bbdd47b9b3f43ce3c2aa18741aecc4a0f962"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1343467",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1343467"
},
{
"name": "[oss-security] 20160602 Re: ImageMagick CVEs",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2016/06/02/13"
},
{
"name": "[oss-security] 20141224 Imagemagick fuzzing bug",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2014/12/24/1"
},
{
"name": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=914da276f717b3e21e5af6614887af14af87a9b8",
"refsource": "CONFIRM",
"url": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=914da276f717b3e21e5af6614887af14af87a9b8"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2014-9811",
"datePublished": "2017-03-30T15:00:00",
"dateReserved": "2016-06-02T00:00:00",
"dateUpdated": "2024-08-06T13:55:04.753Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2014-9811\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2017-03-30T15:59:00.437\",\"lastModified\":\"2025-04-20T01:37:25.860\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file.\"},{\"lang\":\"es\",\"value\":\"El manejador de archivos xwd en ImageMagick permite a atacantes remotos provocar una denegaci\u00f3n de servicio (fallo de segmentaci\u00f3n y ca\u00edda de aplicaci\u00f3n) a trav\u00e9s de un archivo xwd mal formado.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:N/A:P\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.9.4-0\",\"matchCriteriaId\":\"CFC2C780-A54E-4426-9C52-46A20216339E\"}]}]}],\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2014/12/24/1\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2016/06/02/13\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=82a5bbdd47b9b3f43ce3c2aa18741aecc4a0f962\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=914da276f717b3e21e5af6614887af14af87a9b8\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1343467\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2014/12/24/1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2016/06/02/13\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=82a5bbdd47b9b3f43ce3c2aa18741aecc4a0f962\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=914da276f717b3e21e5af6614887af14af87a9b8\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1343467\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]}]}}"
}
}
suse-su-2018:0413-1
Vulnerability from csaf_suse
Published
2018-02-09 14:54
Modified
2018-02-09 14:54
Summary
Security update for GraphicsMagick
Notes
Title of the patch
Security update for GraphicsMagick
Description of the patch
This update for GraphicsMagick fixes several issues.
These security issues were fixed:
- CVE-2017-13065: Prevent NULL pointer dereference in the function SVGStartElement
(bsc#1055038).
- CVE-2018-5685: Prevent infinite loop and application hang in the ReadBMPImage
function. Remote attackers could leverage this vulnerability to cause a denial
of service via an image file with a crafted bit-field mask value (bsc#1075939).
- CVE-2017-9262: The ReadJNGImage function in coders/png.c allowed attackers to
cause a denial of service (memory leak) via a crafted file (bsc#1043353)
- CVE-2017-9261: The ReadMNGImage function in coders/png.c allowed attackers to
cause a denial of service (memory leak) via a crafted file (bsc#1043354)
- CVE-2017-10995: The mng_get_long function in coders/png.c allowed remote
attackers to cause a denial of service (heap-based buffer over-read and
application crash) via a crafted MNG image (bsc#1047908)
- CVE-2017-11102: The ReadOneJNGImage function allowed remote attackers to
cause a denial of service (application crash) during JNG reading via a
zero-length color_image data structure (bsc#1047910).
- CVE-2017-11539: Prevent memory leak in the ReadOnePNGImage() function in
coders/png.c (bsc#1050037)
- CVE-2017-11505: The ReadOneJNGImage function in coders/png.c allowed remote
attackers to cause a denial of service (large loop and CPU consumption) via a
crafted file (bsc#1050072)
- CVE-2017-11526: The ReadOneMNGImage function in coders/png.c allowed remote
attackers to cause a denial of service (large loop and CPU consumption) via a
crafted file (bsc#1050100)
- CVE-2017-11750: The ReadOneJNGImage function in coders/png.c allowed remote
attackers to cause a denial of service (NULL pointer dereference) via a crafted
file (bsc#1051442)
- CVE-2017-12565: Prevent memory leak in the function ReadOneJNGImage in
coders/png.c, which allowed attackers to cause a denial of service
(bsc#1052470)
- CVE-2017-12676: Prevent memory leak in the function ReadOneJNGImage in
coders/png.c, which allowed attackers to cause a denial of service
(bsc#1052708)
- CVE-2017-12673: Prevent memory leak in the function ReadOneMNGImage in
coders/png.c, which allowed attackers to cause a denial of service
(bsc#1052717)
- CVE-2017-12643: Prevent a memory exhaustion vulnerability in ReadOneJNGImage
in coders\png.c (bsc#1052768)
- CVE-2017-12641: Prevent a memory leak vulnerability in ReadOneJNGImage in
coders\png.c (bsc#1052777)
- CVE-2017-12640: Prevent an out-of-bounds read vulnerability in
ReadOneMNGImage in coders/png.c (bsc#1052781)
- CVE-2017-12935: The ReadMNGImage function in coders/png.c mishandled large
MNG images, leading to an invalid memory read in the SetImageColorCallBack
function in magick/image.c (bsc#1054600)
- CVE-2017-13147: Prevent allocation failure in the function ReadMNGImage in
coders/png.c when a small MNG file has a MEND chunk with a large length value
(bsc#1055374)
- CVE-2017-13142: Added additional checks for short files to prevent a crafted
PNG file from triggering a crash (bsc#1055455)
- CVE-2017-13141: Prevent memory leak in ReadOnePNGImage in coders/png.c
(bsc#1055456)
- CVE-2017-14103: The ReadJNGImage and ReadOneJNGImage functions in
coders/png.c did not properly manage image pointers after certain error
conditions, which allowed remote attackers to conduct use-after-free attacks
via a crafted file, related to a ReadMNGImage out-of-order CloseBlob call
(bsc#1057000)
- CVE-2017-14649: ReadOneJNGImage in coders/png.c did not properly validate JNG
data, leading to a denial of service (assertion failure in
magick/pixel_cache.c, and application crash) (bsc#1060162)
- CVE-2017-15218: Prevent memory leak in ReadOneJNGImage in coders/png.c
(bsc#1062752)
- CVE-2017-15238: ReadOneJNGImage had a use-after-free issue when the height or
width is zero, related to ReadJNGImage (bsc#1067198).
- CVE-2017-17782: Prevent heap-based buffer over-read in ReadOneJNGImage
related to oFFs chunk allocation (bsc#1073690).
- CVE-2017-17501: WriteOnePNGImage had a heap-based buffer over-read that could
be triggered via a crafted file (bsc#1074023).
- CVE-2017-17884: Prevent memory leak in the function WriteOnePNGImage in
coders/png.c, which allowed attackers to cause a denial of service via a
crafted PNG image file (bsc#1074120)
- CVE-2017-17879: Prevent heap-based buffer over-read in ReadOneMNGImage in
coders/png.c, related to length calculation and caused by an off-by-one error
(bsc#1074125)
- CVE-2017-17915: Prevent heap-based buffer over-read in ReadMNGImage when
accessing one byte testing whether a limit has been reached (bsc#1074175).
Patchnames
sdksp4-GraphicsMagick-13461,slestso13-GraphicsMagick-13461
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for GraphicsMagick",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for GraphicsMagick fixes several issues.\n\nThese security issues were fixed:\n\n- CVE-2017-13065: Prevent NULL pointer dereference in the function SVGStartElement\n (bsc#1055038).\n- CVE-2018-5685: Prevent infinite loop and application hang in the ReadBMPImage\n function. Remote attackers could leverage this vulnerability to cause a denial\n of service via an image file with a crafted bit-field mask value (bsc#1075939).\n- CVE-2017-9262: The ReadJNGImage function in coders/png.c allowed attackers to\n cause a denial of service (memory leak) via a crafted file (bsc#1043353)\n- CVE-2017-9261: The ReadMNGImage function in coders/png.c allowed attackers to\n cause a denial of service (memory leak) via a crafted file (bsc#1043354)\n- CVE-2017-10995: The mng_get_long function in coders/png.c allowed remote\n attackers to cause a denial of service (heap-based buffer over-read and\n application crash) via a crafted MNG image (bsc#1047908)\n- CVE-2017-11102: The ReadOneJNGImage function allowed remote attackers to\n cause a denial of service (application crash) during JNG reading via a\n zero-length color_image data structure (bsc#1047910).\n- CVE-2017-11539: Prevent memory leak in the ReadOnePNGImage() function in\n coders/png.c (bsc#1050037)\n- CVE-2017-11505: The ReadOneJNGImage function in coders/png.c allowed remote\n attackers to cause a denial of service (large loop and CPU consumption) via a\n crafted file (bsc#1050072)\n- CVE-2017-11526: The ReadOneMNGImage function in coders/png.c allowed remote\n attackers to cause a denial of service (large loop and CPU consumption) via a\n crafted file (bsc#1050100)\n- CVE-2017-11750: The ReadOneJNGImage function in coders/png.c allowed remote\n attackers to cause a denial of service (NULL pointer dereference) via a crafted\n file (bsc#1051442)\n- CVE-2017-12565: Prevent memory leak in the function ReadOneJNGImage in\n coders/png.c, which allowed attackers to cause a denial of service\n (bsc#1052470)\n- CVE-2017-12676: Prevent memory leak in the function ReadOneJNGImage in\n coders/png.c, which allowed attackers to cause a denial of service\n (bsc#1052708)\n- CVE-2017-12673: Prevent memory leak in the function ReadOneMNGImage in\n coders/png.c, which allowed attackers to cause a denial of service\n (bsc#1052717)\n- CVE-2017-12643: Prevent a memory exhaustion vulnerability in ReadOneJNGImage\n in coders\\png.c (bsc#1052768)\n- CVE-2017-12641: Prevent a memory leak vulnerability in ReadOneJNGImage in\n coders\\png.c (bsc#1052777)\n- CVE-2017-12640: Prevent an out-of-bounds read vulnerability in\n ReadOneMNGImage in coders/png.c (bsc#1052781)\n- CVE-2017-12935: The ReadMNGImage function in coders/png.c mishandled large\n MNG images, leading to an invalid memory read in the SetImageColorCallBack\n function in magick/image.c (bsc#1054600)\n- CVE-2017-13147: Prevent allocation failure in the function ReadMNGImage in\n coders/png.c when a small MNG file has a MEND chunk with a large length value\n (bsc#1055374)\n- CVE-2017-13142: Added additional checks for short files to prevent a crafted\n PNG file from triggering a crash (bsc#1055455)\n- CVE-2017-13141: Prevent memory leak in ReadOnePNGImage in coders/png.c\n (bsc#1055456)\n- CVE-2017-14103: The ReadJNGImage and ReadOneJNGImage functions in\n coders/png.c did not properly manage image pointers after certain error\n conditions, which allowed remote attackers to conduct use-after-free attacks\n via a crafted file, related to a ReadMNGImage out-of-order CloseBlob call\n (bsc#1057000)\n- CVE-2017-14649: ReadOneJNGImage in coders/png.c did not properly validate JNG\n data, leading to a denial of service (assertion failure in\n magick/pixel_cache.c, and application crash) (bsc#1060162)\n- CVE-2017-15218: Prevent memory leak in ReadOneJNGImage in coders/png.c\n (bsc#1062752)\n- CVE-2017-15238: ReadOneJNGImage had a use-after-free issue when the height or\n width is zero, related to ReadJNGImage (bsc#1067198).\n- CVE-2017-17782: Prevent heap-based buffer over-read in ReadOneJNGImage\n related to oFFs chunk allocation (bsc#1073690).\n- CVE-2017-17501: WriteOnePNGImage had a heap-based buffer over-read that could\n be triggered via a crafted file (bsc#1074023).\n- CVE-2017-17884: Prevent memory leak in the function WriteOnePNGImage in\n coders/png.c, which allowed attackers to cause a denial of service via a\n crafted PNG image file (bsc#1074120)\n- CVE-2017-17879: Prevent heap-based buffer over-read in ReadOneMNGImage in\n coders/png.c, related to length calculation and caused by an off-by-one error\n (bsc#1074125)\n- CVE-2017-17915: Prevent heap-based buffer over-read in ReadMNGImage when\n accessing one byte testing whether a limit has been reached (bsc#1074175).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "sdksp4-GraphicsMagick-13461,slestso13-GraphicsMagick-13461",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_0413-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2018:0413-1",
"url": "https://www.suse.com/support/update/announcement/2018/suse-su-20180413-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2018:0413-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2018-February/003719.html"
},
{
"category": "self",
"summary": "SUSE Bug 1043353",
"url": "https://bugzilla.suse.com/1043353"
},
{
"category": "self",
"summary": "SUSE Bug 1043354",
"url": "https://bugzilla.suse.com/1043354"
},
{
"category": "self",
"summary": "SUSE Bug 1047908",
"url": "https://bugzilla.suse.com/1047908"
},
{
"category": "self",
"summary": "SUSE Bug 1047910",
"url": "https://bugzilla.suse.com/1047910"
},
{
"category": "self",
"summary": "SUSE Bug 1050037",
"url": "https://bugzilla.suse.com/1050037"
},
{
"category": "self",
"summary": "SUSE Bug 1050072",
"url": "https://bugzilla.suse.com/1050072"
},
{
"category": "self",
"summary": "SUSE Bug 1050100",
"url": "https://bugzilla.suse.com/1050100"
},
{
"category": "self",
"summary": "SUSE Bug 1051442",
"url": "https://bugzilla.suse.com/1051442"
},
{
"category": "self",
"summary": "SUSE Bug 1052470",
"url": "https://bugzilla.suse.com/1052470"
},
{
"category": "self",
"summary": "SUSE Bug 1052708",
"url": "https://bugzilla.suse.com/1052708"
},
{
"category": "self",
"summary": "SUSE Bug 1052717",
"url": "https://bugzilla.suse.com/1052717"
},
{
"category": "self",
"summary": "SUSE Bug 1052768",
"url": "https://bugzilla.suse.com/1052768"
},
{
"category": "self",
"summary": "SUSE Bug 1052777",
"url": "https://bugzilla.suse.com/1052777"
},
{
"category": "self",
"summary": "SUSE Bug 1052781",
"url": "https://bugzilla.suse.com/1052781"
},
{
"category": "self",
"summary": "SUSE Bug 1054600",
"url": "https://bugzilla.suse.com/1054600"
},
{
"category": "self",
"summary": "SUSE Bug 1055038",
"url": "https://bugzilla.suse.com/1055038"
},
{
"category": "self",
"summary": "SUSE Bug 1055374",
"url": "https://bugzilla.suse.com/1055374"
},
{
"category": "self",
"summary": "SUSE Bug 1055455",
"url": "https://bugzilla.suse.com/1055455"
},
{
"category": "self",
"summary": "SUSE Bug 1055456",
"url": "https://bugzilla.suse.com/1055456"
},
{
"category": "self",
"summary": "SUSE Bug 1057000",
"url": "https://bugzilla.suse.com/1057000"
},
{
"category": "self",
"summary": "SUSE Bug 1060162",
"url": "https://bugzilla.suse.com/1060162"
},
{
"category": "self",
"summary": "SUSE Bug 1062752",
"url": "https://bugzilla.suse.com/1062752"
},
{
"category": "self",
"summary": "SUSE Bug 1067198",
"url": "https://bugzilla.suse.com/1067198"
},
{
"category": "self",
"summary": "SUSE Bug 1073690",
"url": "https://bugzilla.suse.com/1073690"
},
{
"category": "self",
"summary": "SUSE Bug 1074023",
"url": "https://bugzilla.suse.com/1074023"
},
{
"category": "self",
"summary": "SUSE Bug 1074120",
"url": "https://bugzilla.suse.com/1074120"
},
{
"category": "self",
"summary": "SUSE Bug 1074125",
"url": "https://bugzilla.suse.com/1074125"
},
{
"category": "self",
"summary": "SUSE Bug 1074175",
"url": "https://bugzilla.suse.com/1074175"
},
{
"category": "self",
"summary": "SUSE Bug 1075939",
"url": "https://bugzilla.suse.com/1075939"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9811 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-10995 page",
"url": "https://www.suse.com/security/cve/CVE-2017-10995/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-11102 page",
"url": "https://www.suse.com/security/cve/CVE-2017-11102/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-11505 page",
"url": "https://www.suse.com/security/cve/CVE-2017-11505/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-11526 page",
"url": "https://www.suse.com/security/cve/CVE-2017-11526/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-11539 page",
"url": "https://www.suse.com/security/cve/CVE-2017-11539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-11750 page",
"url": "https://www.suse.com/security/cve/CVE-2017-11750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-12565 page",
"url": "https://www.suse.com/security/cve/CVE-2017-12565/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-12640 page",
"url": "https://www.suse.com/security/cve/CVE-2017-12640/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-12641 page",
"url": "https://www.suse.com/security/cve/CVE-2017-12641/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-12643 page",
"url": "https://www.suse.com/security/cve/CVE-2017-12643/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-12673 page",
"url": "https://www.suse.com/security/cve/CVE-2017-12673/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-12676 page",
"url": "https://www.suse.com/security/cve/CVE-2017-12676/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-12935 page",
"url": "https://www.suse.com/security/cve/CVE-2017-12935/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-13065 page",
"url": "https://www.suse.com/security/cve/CVE-2017-13065/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-13141 page",
"url": "https://www.suse.com/security/cve/CVE-2017-13141/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-13142 page",
"url": "https://www.suse.com/security/cve/CVE-2017-13142/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-13147 page",
"url": "https://www.suse.com/security/cve/CVE-2017-13147/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14103 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14103/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14174 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14174/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14649 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14649/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-15218 page",
"url": "https://www.suse.com/security/cve/CVE-2017-15218/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-15238 page",
"url": "https://www.suse.com/security/cve/CVE-2017-15238/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-16669 page",
"url": "https://www.suse.com/security/cve/CVE-2017-16669/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-17501 page",
"url": "https://www.suse.com/security/cve/CVE-2017-17501/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-17504 page",
"url": "https://www.suse.com/security/cve/CVE-2017-17504/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-17782 page",
"url": "https://www.suse.com/security/cve/CVE-2017-17782/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-17879 page",
"url": "https://www.suse.com/security/cve/CVE-2017-17879/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-17884 page",
"url": "https://www.suse.com/security/cve/CVE-2017-17884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-17915 page",
"url": "https://www.suse.com/security/cve/CVE-2017-17915/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-8352 page",
"url": "https://www.suse.com/security/cve/CVE-2017-8352/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-9261 page",
"url": "https://www.suse.com/security/cve/CVE-2017-9261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-9262 page",
"url": "https://www.suse.com/security/cve/CVE-2017-9262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-5685 page",
"url": "https://www.suse.com/security/cve/CVE-2018-5685/"
}
],
"title": "Security update for GraphicsMagick",
"tracking": {
"current_release_date": "2018-02-09T14:54:21Z",
"generator": {
"date": "2018-02-09T14:54:21Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2018:0413-1",
"initial_release_date": "2018-02-09T14:54:21Z",
"revision_history": [
{
"date": "2018-02-09T14:54:21Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "GraphicsMagick-1.2.5-4.78.33.1.i586",
"product": {
"name": "GraphicsMagick-1.2.5-4.78.33.1.i586",
"product_id": "GraphicsMagick-1.2.5-4.78.33.1.i586"
}
},
{
"category": "product_version",
"name": "libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"product": {
"name": "libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"product_id": "libGraphicsMagick2-1.2.5-4.78.33.1.i586"
}
},
{
"category": "product_version",
"name": "perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"product": {
"name": "perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"product_id": "perl-GraphicsMagick-1.2.5-4.78.33.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "GraphicsMagick-1.2.5-4.78.33.1.ia64",
"product": {
"name": "GraphicsMagick-1.2.5-4.78.33.1.ia64",
"product_id": "GraphicsMagick-1.2.5-4.78.33.1.ia64"
}
},
{
"category": "product_version",
"name": "libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"product": {
"name": "libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"product_id": "libGraphicsMagick2-1.2.5-4.78.33.1.ia64"
}
},
{
"category": "product_version",
"name": "perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"product": {
"name": "perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"product_id": "perl-GraphicsMagick-1.2.5-4.78.33.1.ia64"
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"product": {
"name": "GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"product_id": "GraphicsMagick-1.2.5-4.78.33.1.ppc64"
}
},
{
"category": "product_version",
"name": "libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"product": {
"name": "libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"product_id": "libGraphicsMagick2-1.2.5-4.78.33.1.ppc64"
}
},
{
"category": "product_version",
"name": "perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"product": {
"name": "perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"product_id": "perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "GraphicsMagick-1.2.5-4.78.33.1.s390x",
"product": {
"name": "GraphicsMagick-1.2.5-4.78.33.1.s390x",
"product_id": "GraphicsMagick-1.2.5-4.78.33.1.s390x"
}
},
{
"category": "product_version",
"name": "libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"product": {
"name": "libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"product_id": "libGraphicsMagick2-1.2.5-4.78.33.1.s390x"
}
},
{
"category": "product_version",
"name": "perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"product": {
"name": "perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"product_id": "perl-GraphicsMagick-1.2.5-4.78.33.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"product": {
"name": "GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"product_id": "GraphicsMagick-1.2.5-4.78.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"product": {
"name": "libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"product_id": "libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
}
},
{
"category": "product_version",
"name": "perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"product": {
"name": "perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"product_id": "perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 11 SP4",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_identification_helper": {
"cpe": "cpe:/a:suse:sle-sdk:11:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Studio Onsite 1.3",
"product": {
"name": "SUSE Studio Onsite 1.3",
"product_id": "SUSE Studio Onsite 1.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-studioonsite:1.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "GraphicsMagick-1.2.5-4.78.33.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586"
},
"product_reference": "GraphicsMagick-1.2.5-4.78.33.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "GraphicsMagick-1.2.5-4.78.33.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64"
},
"product_reference": "GraphicsMagick-1.2.5-4.78.33.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "GraphicsMagick-1.2.5-4.78.33.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64"
},
"product_reference": "GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "GraphicsMagick-1.2.5-4.78.33.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x"
},
"product_reference": "GraphicsMagick-1.2.5-4.78.33.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "GraphicsMagick-1.2.5-4.78.33.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64"
},
"product_reference": "GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libGraphicsMagick2-1.2.5-4.78.33.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586"
},
"product_reference": "libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libGraphicsMagick2-1.2.5-4.78.33.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64"
},
"product_reference": "libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libGraphicsMagick2-1.2.5-4.78.33.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64"
},
"product_reference": "libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libGraphicsMagick2-1.2.5-4.78.33.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x"
},
"product_reference": "libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libGraphicsMagick2-1.2.5-4.78.33.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
},
"product_reference": "libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-GraphicsMagick-1.2.5-4.78.33.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586"
},
"product_reference": "perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-GraphicsMagick-1.2.5-4.78.33.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64"
},
"product_reference": "perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64"
},
"product_reference": "perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-GraphicsMagick-1.2.5-4.78.33.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x"
},
"product_reference": "perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64"
},
"product_reference": "perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "GraphicsMagick-1.2.5-4.78.33.1.x86_64 as component of SUSE Studio Onsite 1.3",
"product_id": "SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64"
},
"product_reference": "GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"relates_to_product_reference": "SUSE Studio Onsite 1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libGraphicsMagick2-1.2.5-4.78.33.1.x86_64 as component of SUSE Studio Onsite 1.3",
"product_id": "SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
},
"product_reference": "libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"relates_to_product_reference": "SUSE Studio Onsite 1.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-9811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9811"
}
],
"notes": [
{
"category": "general",
"text": "The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9811",
"url": "https://www.suse.com/security/cve/CVE-2014-9811"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9811",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984032 for CVE-2014-9811",
"url": "https://bugzilla.suse.com/984032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2014-9811"
},
{
"cve": "CVE-2017-10995",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-10995"
}
],
"notes": [
{
"category": "general",
"text": "The mng_get_long function in coders/png.c in ImageMagick 7.0.6-0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted MNG image.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-10995",
"url": "https://www.suse.com/security/cve/CVE-2017-10995"
},
{
"category": "external",
"summary": "SUSE Bug 1047908 for CVE-2017-10995",
"url": "https://bugzilla.suse.com/1047908"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-10995"
},
{
"cve": "CVE-2017-11102",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-11102"
}
],
"notes": [
{
"category": "general",
"text": "The ReadOneJNGImage function in coders/png.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (application crash) during JNG reading via a zero-length color_image data structure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-11102",
"url": "https://www.suse.com/security/cve/CVE-2017-11102"
},
{
"category": "external",
"summary": "SUSE Bug 1047910 for CVE-2017-11102",
"url": "https://bugzilla.suse.com/1047910"
},
{
"category": "external",
"summary": "SUSE Bug 1057000 for CVE-2017-11102",
"url": "https://bugzilla.suse.com/1057000"
},
{
"category": "external",
"summary": "SUSE Bug 1107619 for CVE-2017-11102",
"url": "https://bugzilla.suse.com/1107619"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-11102"
},
{
"cve": "CVE-2017-11505",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-11505"
}
],
"notes": [
{
"category": "general",
"text": "The ReadOneJNGImage function in coders/png.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a malformed JNG file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-11505",
"url": "https://www.suse.com/security/cve/CVE-2017-11505"
},
{
"category": "external",
"summary": "SUSE Bug 1050072 for CVE-2017-11505",
"url": "https://bugzilla.suse.com/1050072"
},
{
"category": "external",
"summary": "SUSE Bug 1050100 for CVE-2017-11505",
"url": "https://bugzilla.suse.com/1050100"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-11505"
},
{
"cve": "CVE-2017-11526",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-11526"
}
],
"notes": [
{
"category": "general",
"text": "The ReadOneMNGImage function in coders/png.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-11526",
"url": "https://www.suse.com/security/cve/CVE-2017-11526"
},
{
"category": "external",
"summary": "SUSE Bug 1050072 for CVE-2017-11526",
"url": "https://bugzilla.suse.com/1050072"
},
{
"category": "external",
"summary": "SUSE Bug 1050100 for CVE-2017-11526",
"url": "https://bugzilla.suse.com/1050100"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "important"
}
],
"title": "CVE-2017-11526"
},
{
"cve": "CVE-2017-11539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-11539"
}
],
"notes": [
{
"category": "general",
"text": "When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the ReadOnePNGImage() function in coders/png.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-11539",
"url": "https://www.suse.com/security/cve/CVE-2017-11539"
},
{
"category": "external",
"summary": "SUSE Bug 1050037 for CVE-2017-11539",
"url": "https://bugzilla.suse.com/1050037"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "important"
}
],
"title": "CVE-2017-11539"
},
{
"cve": "CVE-2017-11750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-11750"
}
],
"notes": [
{
"category": "general",
"text": "The ReadOneJNGImage function in coders/png.c in ImageMagick 6.9.9-4 and 7.0.6-4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-11750",
"url": "https://www.suse.com/security/cve/CVE-2017-11750"
},
{
"category": "external",
"summary": "SUSE Bug 1047910 for CVE-2017-11750",
"url": "https://bugzilla.suse.com/1047910"
},
{
"category": "external",
"summary": "SUSE Bug 1051442 for CVE-2017-11750",
"url": "https://bugzilla.suse.com/1051442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "important"
}
],
"title": "CVE-2017-11750"
},
{
"cve": "CVE-2017-12565",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-12565"
}
],
"notes": [
{
"category": "general",
"text": "In ImageMagick 7.0.6-2, a memory leak vulnerability was found in the function ReadOneJNGImage in coders/png.c, which allows attackers to cause a denial of service.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-12565",
"url": "https://www.suse.com/security/cve/CVE-2017-12565"
},
{
"category": "external",
"summary": "SUSE Bug 1047910 for CVE-2017-12565",
"url": "https://bugzilla.suse.com/1047910"
},
{
"category": "external",
"summary": "SUSE Bug 1052470 for CVE-2017-12565",
"url": "https://bugzilla.suse.com/1052470"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-12565"
},
{
"cve": "CVE-2017-12640",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-12640"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick 7.0.6-1 has an out-of-bounds read vulnerability in ReadOneMNGImage in coders/png.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-12640",
"url": "https://www.suse.com/security/cve/CVE-2017-12640"
},
{
"category": "external",
"summary": "SUSE Bug 1052781 for CVE-2017-12640",
"url": "https://bugzilla.suse.com/1052781"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-12640"
},
{
"cve": "CVE-2017-12641",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-12641"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadOneJNGImage in coders\\png.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-12641",
"url": "https://www.suse.com/security/cve/CVE-2017-12641"
},
{
"category": "external",
"summary": "SUSE Bug 1052777 for CVE-2017-12641",
"url": "https://bugzilla.suse.com/1052777"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "important"
}
],
"title": "CVE-2017-12641"
},
{
"cve": "CVE-2017-12643",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-12643"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick 7.0.6-1 has a memory exhaustion vulnerability in ReadOneJNGImage in coders\\png.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-12643",
"url": "https://www.suse.com/security/cve/CVE-2017-12643"
},
{
"category": "external",
"summary": "SUSE Bug 1052768 for CVE-2017-12643",
"url": "https://bugzilla.suse.com/1052768"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "important"
}
],
"title": "CVE-2017-12643"
},
{
"cve": "CVE-2017-12673",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-12673"
}
],
"notes": [
{
"category": "general",
"text": "In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneMNGImage in coders/png.c, which allows attackers to cause a denial of service.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-12673",
"url": "https://www.suse.com/security/cve/CVE-2017-12673"
},
{
"category": "external",
"summary": "SUSE Bug 1052717 for CVE-2017-12673",
"url": "https://bugzilla.suse.com/1052717"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-12673"
},
{
"cve": "CVE-2017-12676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-12676"
}
],
"notes": [
{
"category": "general",
"text": "In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneJNGImage in coders/png.c, which allows attackers to cause a denial of service.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-12676",
"url": "https://www.suse.com/security/cve/CVE-2017-12676"
},
{
"category": "external",
"summary": "SUSE Bug 1052708 for CVE-2017-12676",
"url": "https://bugzilla.suse.com/1052708"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-12676"
},
{
"cve": "CVE-2017-12935",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-12935"
}
],
"notes": [
{
"category": "general",
"text": "The ReadMNGImage function in coders/png.c in GraphicsMagick 1.3.26 mishandles large MNG images, leading to an invalid memory read in the SetImageColorCallBack function in magick/image.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-12935",
"url": "https://www.suse.com/security/cve/CVE-2017-12935"
},
{
"category": "external",
"summary": "SUSE Bug 1054598 for CVE-2017-12935",
"url": "https://bugzilla.suse.com/1054598"
},
{
"category": "external",
"summary": "SUSE Bug 1054600 for CVE-2017-12935",
"url": "https://bugzilla.suse.com/1054600"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-12935"
},
{
"cve": "CVE-2017-13065",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-13065"
}
],
"notes": [
{
"category": "general",
"text": "GraphicsMagick 1.3.26 has a NULL pointer dereference vulnerability in the function SVGStartElement in coders/svg.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-13065",
"url": "https://www.suse.com/security/cve/CVE-2017-13065"
},
{
"category": "external",
"summary": "SUSE Bug 1054598 for CVE-2017-13065",
"url": "https://bugzilla.suse.com/1054598"
},
{
"category": "external",
"summary": "SUSE Bug 1054600 for CVE-2017-13065",
"url": "https://bugzilla.suse.com/1054600"
},
{
"category": "external",
"summary": "SUSE Bug 1055038 for CVE-2017-13065",
"url": "https://bugzilla.suse.com/1055038"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-13065"
},
{
"cve": "CVE-2017-13141",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-13141"
}
],
"notes": [
{
"category": "general",
"text": "In ImageMagick before 6.9.9-4 and 7.x before 7.0.6-4, a crafted file could trigger a memory leak in ReadOnePNGImage in coders/png.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-13141",
"url": "https://www.suse.com/security/cve/CVE-2017-13141"
},
{
"category": "external",
"summary": "SUSE Bug 1055456 for CVE-2017-13141",
"url": "https://bugzilla.suse.com/1055456"
},
{
"category": "external",
"summary": "SUSE Bug 1060162 for CVE-2017-13141",
"url": "https://bugzilla.suse.com/1060162"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-13141"
},
{
"cve": "CVE-2017-13142",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-13142"
}
],
"notes": [
{
"category": "general",
"text": "In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, a crafted PNG file could trigger a crash because there was an insufficient check for short files.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-13142",
"url": "https://www.suse.com/security/cve/CVE-2017-13142"
},
{
"category": "external",
"summary": "SUSE Bug 1055455 for CVE-2017-13142",
"url": "https://bugzilla.suse.com/1055455"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-13142"
},
{
"cve": "CVE-2017-13147",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-13147"
}
],
"notes": [
{
"category": "general",
"text": "In GraphicsMagick 1.3.26, an allocation failure vulnerability was found in the function ReadMNGImage in coders/png.c when a small MNG file has a MEND chunk with a large length value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-13147",
"url": "https://www.suse.com/security/cve/CVE-2017-13147"
},
{
"category": "external",
"summary": "SUSE Bug 1055374 for CVE-2017-13147",
"url": "https://bugzilla.suse.com/1055374"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-13147"
},
{
"cve": "CVE-2017-14103",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14103"
}
],
"notes": [
{
"category": "general",
"text": "The ReadJNGImage and ReadOneJNGImage functions in coders/png.c in GraphicsMagick 1.3.26 do not properly manage image pointers after certain error conditions, which allows remote attackers to conduct use-after-free attacks via a crafted file, related to a ReadMNGImage out-of-order CloseBlob call. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-11403.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14103",
"url": "https://www.suse.com/security/cve/CVE-2017-14103"
},
{
"category": "external",
"summary": "SUSE Bug 1057000 for CVE-2017-14103",
"url": "https://bugzilla.suse.com/1057000"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-14103"
},
{
"cve": "CVE-2017-14174",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14174"
}
],
"notes": [
{
"category": "general",
"text": "In coders/psd.c in ImageMagick 7.0.7-0 Q16, a DoS in ReadPSDLayersInternal() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted PSD file, which claims a large \"length\" field in the header but does not contain sufficient backing data, is provided, the loop over \"length\" would consume huge CPU resources, since there is no EOF check inside the loop.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14174",
"url": "https://www.suse.com/security/cve/CVE-2017-14174"
},
{
"category": "external",
"summary": "SUSE Bug 1057723 for CVE-2017-14174",
"url": "https://bugzilla.suse.com/1057723"
},
{
"category": "external",
"summary": "SUSE Bug 1072901 for CVE-2017-14174",
"url": "https://bugzilla.suse.com/1072901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "low"
}
],
"title": "CVE-2017-14174"
},
{
"cve": "CVE-2017-14649",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14649"
}
],
"notes": [
{
"category": "general",
"text": "ReadOneJNGImage in coders/png.c in GraphicsMagick version 1.3.26 does not properly validate JNG data, leading to a denial of service (assertion failure in magick/pixel_cache.c, and application crash).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14649",
"url": "https://www.suse.com/security/cve/CVE-2017-14649"
},
{
"category": "external",
"summary": "SUSE Bug 1060162 for CVE-2017-14649",
"url": "https://bugzilla.suse.com/1060162"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-14649"
},
{
"cve": "CVE-2017-15218",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-15218"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick 7.0.7-2 has a memory leak in ReadOneJNGImage in coders/png.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-15218",
"url": "https://www.suse.com/security/cve/CVE-2017-15218"
},
{
"category": "external",
"summary": "SUSE Bug 1047910 for CVE-2017-15218",
"url": "https://bugzilla.suse.com/1047910"
},
{
"category": "external",
"summary": "SUSE Bug 1062752 for CVE-2017-15218",
"url": "https://bugzilla.suse.com/1062752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-15218"
},
{
"cve": "CVE-2017-15238",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-15238"
}
],
"notes": [
{
"category": "general",
"text": "ReadOneJNGImage in coders/png.c in GraphicsMagick 1.3.26 has a use-after-free issue when the height or width is zero, related to ReadJNGImage.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-15238",
"url": "https://www.suse.com/security/cve/CVE-2017-15238"
},
{
"category": "external",
"summary": "SUSE Bug 1067198 for CVE-2017-15238",
"url": "https://bugzilla.suse.com/1067198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-15238"
},
{
"cve": "CVE-2017-16669",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-16669"
}
],
"notes": [
{
"category": "general",
"text": "coders/wpg.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted file, related to the AcquireCacheNexus function in magick/pixel_cache.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-16669",
"url": "https://www.suse.com/security/cve/CVE-2017-16669"
},
{
"category": "external",
"summary": "SUSE Bug 1067409 for CVE-2017-16669",
"url": "https://bugzilla.suse.com/1067409"
},
{
"category": "external",
"summary": "SUSE Bug 1072898 for CVE-2017-16669",
"url": "https://bugzilla.suse.com/1072898"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "important"
}
],
"title": "CVE-2017-16669"
},
{
"cve": "CVE-2017-17501",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-17501"
}
],
"notes": [
{
"category": "general",
"text": "WriteOnePNGImage in coders/png.c in GraphicsMagick 1.3.26 has a heap-based buffer over-read via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-17501",
"url": "https://www.suse.com/security/cve/CVE-2017-17501"
},
{
"category": "external",
"summary": "SUSE Bug 1074023 for CVE-2017-17501",
"url": "https://bugzilla.suse.com/1074023"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "low"
}
],
"title": "CVE-2017-17501"
},
{
"cve": "CVE-2017-17504",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-17504"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick before 7.0.7-12 has a coders/png.c Magick_png_read_raw_profile heap-based buffer over-read via a crafted file, related to ReadOneMNGImage.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-17504",
"url": "https://www.suse.com/security/cve/CVE-2017-17504"
},
{
"category": "external",
"summary": "SUSE Bug 1072362 for CVE-2017-17504",
"url": "https://bugzilla.suse.com/1072362"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-17504"
},
{
"cve": "CVE-2017-17782",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-17782"
}
],
"notes": [
{
"category": "general",
"text": "In GraphicsMagick 1.3.27a, there is a heap-based buffer over-read in ReadOneJNGImage in coders/png.c, related to oFFs chunk allocation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-17782",
"url": "https://www.suse.com/security/cve/CVE-2017-17782"
},
{
"category": "external",
"summary": "SUSE Bug 1073690 for CVE-2017-17782",
"url": "https://bugzilla.suse.com/1073690"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-17782"
},
{
"cve": "CVE-2017-17879",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-17879"
}
],
"notes": [
{
"category": "general",
"text": "In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-21, there is a heap-based buffer over-read in ReadOneMNGImage in coders/png.c, related to length calculation and caused by an off-by-one error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-17879",
"url": "https://www.suse.com/security/cve/CVE-2017-17879"
},
{
"category": "external",
"summary": "SUSE Bug 1074125 for CVE-2017-17879",
"url": "https://bugzilla.suse.com/1074125"
},
{
"category": "external",
"summary": "SUSE Bug 1074175 for CVE-2017-17879",
"url": "https://bugzilla.suse.com/1074175"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "important"
}
],
"title": "CVE-2017-17879"
},
{
"cve": "CVE-2017-17884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-17884"
}
],
"notes": [
{
"category": "general",
"text": "In ImageMagick 7.0.7-16 Q16, a memory leak vulnerability was found in the function WriteOnePNGImage in coders/png.c, which allows attackers to cause a denial of service via a crafted PNG image file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-17884",
"url": "https://www.suse.com/security/cve/CVE-2017-17884"
},
{
"category": "external",
"summary": "SUSE Bug 1074120 for CVE-2017-17884",
"url": "https://bugzilla.suse.com/1074120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-17884"
},
{
"cve": "CVE-2017-17915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-17915"
}
],
"notes": [
{
"category": "general",
"text": "In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a heap-based buffer over-read in ReadMNGImage in coders/png.c, related to accessing one byte before testing whether a limit has been reached.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-17915",
"url": "https://www.suse.com/security/cve/CVE-2017-17915"
},
{
"category": "external",
"summary": "SUSE Bug 1074125 for CVE-2017-17915",
"url": "https://bugzilla.suse.com/1074125"
},
{
"category": "external",
"summary": "SUSE Bug 1074175 for CVE-2017-17915",
"url": "https://bugzilla.suse.com/1074175"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "important"
}
],
"title": "CVE-2017-17915"
},
{
"cve": "CVE-2017-8352",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-8352"
}
],
"notes": [
{
"category": "general",
"text": "In ImageMagick 7.0.5-5, the ReadXWDImage function in xwd.c allows attackers to cause a denial of service (memory leak) via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-8352",
"url": "https://www.suse.com/security/cve/CVE-2017-8352"
},
{
"category": "external",
"summary": "SUSE Bug 1036987 for CVE-2017-8352",
"url": "https://bugzilla.suse.com/1036987"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-8352"
},
{
"cve": "CVE-2017-9261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-9261"
}
],
"notes": [
{
"category": "general",
"text": "In ImageMagick 7.0.5-6 Q16, the ReadMNGImage function in coders/png.c allows attackers to cause a denial of service (memory leak) via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-9261",
"url": "https://www.suse.com/security/cve/CVE-2017-9261"
},
{
"category": "external",
"summary": "SUSE Bug 1043354 for CVE-2017-9261",
"url": "https://bugzilla.suse.com/1043354"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-9261"
},
{
"cve": "CVE-2017-9262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-9262"
}
],
"notes": [
{
"category": "general",
"text": "In ImageMagick 7.0.5-6 Q16, the ReadJNGImage function in coders/png.c allows attackers to cause a denial of service (memory leak) via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-9262",
"url": "https://www.suse.com/security/cve/CVE-2017-9262"
},
{
"category": "external",
"summary": "SUSE Bug 1043353 for CVE-2017-9262",
"url": "https://bugzilla.suse.com/1043353"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "moderate"
}
],
"title": "CVE-2017-9262"
},
{
"cve": "CVE-2018-5685",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-5685"
}
],
"notes": [
{
"category": "general",
"text": "In GraphicsMagick 1.3.27, there is an infinite loop and application hang in the ReadBMPImage function (coders/bmp.c). Remote attackers could leverage this vulnerability to cause a denial of service via an image file with a crafted bit-field mask value.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-5685",
"url": "https://www.suse.com/security/cve/CVE-2018-5685"
},
{
"category": "external",
"summary": "SUSE Bug 1075939 for CVE-2018-5685",
"url": "https://bugzilla.suse.com/1075939"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.78.33.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.78.33.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2018-02-09T14:54:21Z",
"details": "important"
}
],
"title": "CVE-2018-5685"
}
]
}
suse-su-2016:1784-1
Vulnerability from csaf_suse
Published
2016-07-11 10:11
Modified
2016-07-11 10:11
Summary
Security update for ImageMagick
Notes
Title of the patch
Security update for ImageMagick
Description of the patch
ImageMagick was updated to fix 66 security issues.
These security issues were fixed:
- CVE-2014-9810: SEGV in dpx file handler. (bsc#983803).
- CVE-2014-9811: Crash in xwd file handler (bsc#984032).
- CVE-2014-9812: NULL pointer dereference in ps file handling (bsc#984137).
- CVE-2014-9813: Crash on corrupted viff file (bsc#984035).
- CVE-2014-9814: NULL pointer dereference in wpg file handling (bsc#984193).
- CVE-2014-9815: Crash on corrupted wpg file (bsc#984372).
- CVE-2014-9816: Out of bound access in viff image (bsc#984398).
- CVE-2014-9817: Heap buffer overflow in pdb file handling (bsc#984400).
- CVE-2014-9818: Out of bound access on malformed sun file (bsc#984181).
- CVE-2014-9819: Heap overflow in palm files (bsc#984142).
- CVE-2014-9830: Handling of corrupted sun file (bsc#984135).
- CVE-2014-9831: Handling of corrupted wpg file (bsc#984375).
- CVE-2014-9850: Incorrect thread limit logic (bsc#984149).
- CVE-2014-9851: Crash when parsing resource block (bsc#984160).
- CVE-2014-9852: Incorrect usage of object after it has been destroyed (bsc#984191).
- CVE-2014-9853: Memory leak in rle file handling (bsc#984408).
- CVE-2015-8902: PDB file DoS (CPU consumption) (bsc#983253).
- CVE-2015-8903: Denial of service (cpu) in vicar (bsc#983259).
- CVE-2015-8900: HDR file DoS (endless loop) (bsc#983232).
- CVE-2015-8901: MIFF file DoS (endless loop) (bsc#983234).
- CVE-2016-5688: Various invalid memory reads in ImageMagick WPG (bsc#985442).
- CVE-2014-9834: Heap overflow in pict file (bsc#984436).
- CVE-2014-9806: Prevent leak of file descriptor due to corrupted file. (bsc#983774).
- CVE-2016-5687: Out of bounds read in DDS coder (bsc#985448).
- CVE-2014-9838: Out of memory crash in magick/cache.c (bsc#984370).
- CVE-2014-9854: Filling memory during identification of TIFF image (bsc#984184).
- CVE-2015-8898: Prevent null pointer access in magick/constitute.c (bsc#983746).
- CVE-2014-9833: Heap overflow in psd file (bsc#984406).
- CVE-2015-8894: Double free in coders/tga.c:221 (bsc#983523).
- CVE-2015-8895: Integer and Buffer overflow in coders/icon.c (bsc#983527).
- CVE-2015-8896: Double free / integer truncation issue in coders/pict.c:2000 (bsc#983533).
- CVE-2015-8897: Out of bounds error in SpliceImage (bsc#983739).
- CVE-2016-5690: Bad foor loop in DCM coder (bsc#985451).
- CVE-2016-5691: Checks for pixel.red/green/blue in dcm coder (bsc#985456).
- CVE-2014-9836: Crash in xpm file handling (bsc#984023).
- CVE-2014-9808: SEGV due to corrupted dpc images. (bsc#983796).
- CVE-2014-9821: Avoid heap overflow in pnm files. (bsc#984014).
- CVE-2014-9820: Heap overflow in xpm files (bsc#984150).
- CVE-2014-9823: Heap overflow in palm file (bsc#984401).
- CVE-2014-9822: Heap overflow in quantum file (bsc#984187).
- CVE-2014-9825: Heap overflow in corrupted psd file (bsc#984427).
- CVE-2014-9824: Heap overflow in psd file (bsc#984185).
- CVE-2014-9809: SEGV due to corrupted xwd images. (bsc#983799).
- CVE-2014-9826: Incorrect error handling in sun files (bsc#984186).
- CVE-2014-9843: Incorrect boundary checks in DecodePSDPixels (bsc#984179).
- CVE-2014-9842: Memory leak in psd handling (bsc#984374).
- CVE-2014-9841: Throwing of exceptions in psd handling (bsc#984172).
- CVE-2014-9840: Out of bound access in palm file (bsc#984433).
- CVE-2014-9847: Incorrect handling of 'previous' image in the JNG decoder (bsc#984144).
- CVE-2014-9846: Added checks to prevent overflow in rle file. (bsc#983521).
- CVE-2014-9845: Crash due to corrupted dib file (bsc#984394).
- CVE-2014-9844: Out of bound issue in rle file (bsc#984373).
- CVE-2014-9849: Crash in png coder (bsc#984018).
- CVE-2014-9848: Memory leak in quantum management (bsc#984404).
- CVE-2014-9807: Double free in pdb coder. (bsc#983794).
- CVE-2014-9829: Out of bound access in sun file (bsc#984409).
- CVE-2014-9832: Heap overflow in pcx file (bsc#984183).
- CVE-2014-9805: SEGV due to a corrupted pnm file. (bsc#983752).
- CVE-2016-4564: The DrawImage function in MagickCore/draw.c in ImageMagick made an incorrect function call in attempting to locate the next token, which allowed remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file (bsc#983308).
- CVE-2016-4563: The TraceStrokePolygon function in MagickCore/draw.c in ImageMagick mishandled the relationship between the BezierQuantum value and certain strokes data, which allowed remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file (bsc#983305).
- CVE-2016-4562: The DrawDashPolygon function in MagickCore/draw.c in ImageMagick mishandled calculations of certain vertices integer data, which allowed remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file (bsc#983292).
- CVE-2014-9839: Theoretical out of bound access in magick/colormap-private.h (bsc#984379).
- CVE-2016-5689: NULL ptr dereference in dcm coder (bsc#985460).
- CVE-2014-9837: Additional PNM sanity checks (bsc#984166).
- CVE-2014-9835: Heap overflow in wpf file (bsc#984145).
- CVE-2014-9828: Corrupted (too many colors) psd file (bsc#984028).
- CVE-2016-5841: Integer overflow could have read to RCE (bnc#986609).
- CVE-2016-5842: Out-of-bounds read in MagickCore/property.c:1396 could have lead to memory leak (bnc#986608).
Patchnames
SUSE-SLE-DESKTOP-12-SP1-2016-1041,SUSE-SLE-SDK-12-SP1-2016-1041,SUSE-SLE-SERVER-12-SP1-2016-1041,SUSE-SLE-WE-12-SP1-2016-1041
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for ImageMagick",
"title": "Title of the patch"
},
{
"category": "description",
"text": "ImageMagick was updated to fix 66 security issues.\n\nThese security issues were fixed:\n- CVE-2014-9810: SEGV in dpx file handler. (bsc#983803).\n- CVE-2014-9811: Crash in xwd file handler (bsc#984032).\n- CVE-2014-9812: NULL pointer dereference in ps file handling (bsc#984137).\n- CVE-2014-9813: Crash on corrupted viff file (bsc#984035).\n- CVE-2014-9814: NULL pointer dereference in wpg file handling (bsc#984193).\n- CVE-2014-9815: Crash on corrupted wpg file (bsc#984372).\n- CVE-2014-9816: Out of bound access in viff image (bsc#984398).\n- CVE-2014-9817: Heap buffer overflow in pdb file handling (bsc#984400).\n- CVE-2014-9818: Out of bound access on malformed sun file (bsc#984181).\n- CVE-2014-9819: Heap overflow in palm files (bsc#984142).\n- CVE-2014-9830: Handling of corrupted sun file (bsc#984135).\n- CVE-2014-9831: Handling of corrupted wpg file (bsc#984375).\n- CVE-2014-9850: Incorrect thread limit logic (bsc#984149).\n- CVE-2014-9851: Crash when parsing resource block (bsc#984160).\n- CVE-2014-9852: Incorrect usage of object after it has been destroyed (bsc#984191).\n- CVE-2014-9853: Memory leak in rle file handling (bsc#984408).\n- CVE-2015-8902: PDB file DoS (CPU consumption) (bsc#983253).\n- CVE-2015-8903: Denial of service (cpu) in vicar (bsc#983259).\n- CVE-2015-8900: HDR file DoS (endless loop) (bsc#983232).\n- CVE-2015-8901: MIFF file DoS (endless loop) (bsc#983234).\n- CVE-2016-5688: Various invalid memory reads in ImageMagick WPG (bsc#985442).\n- CVE-2014-9834: Heap overflow in pict file (bsc#984436).\n- CVE-2014-9806: Prevent leak of file descriptor due to corrupted file. (bsc#983774).\n- CVE-2016-5687: Out of bounds read in DDS coder (bsc#985448).\n- CVE-2014-9838: Out of memory crash in magick/cache.c (bsc#984370).\n- CVE-2014-9854: Filling memory during identification of TIFF image (bsc#984184).\n- CVE-2015-8898: Prevent null pointer access in magick/constitute.c (bsc#983746).\n- CVE-2014-9833: Heap overflow in psd file (bsc#984406).\n- CVE-2015-8894: Double free in coders/tga.c:221 (bsc#983523).\n- CVE-2015-8895: Integer and Buffer overflow in coders/icon.c (bsc#983527).\n- CVE-2015-8896: Double free / integer truncation issue in coders/pict.c:2000 (bsc#983533).\n- CVE-2015-8897: Out of bounds error in SpliceImage (bsc#983739).\n- CVE-2016-5690: Bad foor loop in DCM coder (bsc#985451).\n- CVE-2016-5691: Checks for pixel.red/green/blue in dcm coder (bsc#985456).\n- CVE-2014-9836: Crash in xpm file handling (bsc#984023).\n- CVE-2014-9808: SEGV due to corrupted dpc images. (bsc#983796).\n- CVE-2014-9821: Avoid heap overflow in pnm files. (bsc#984014).\n- CVE-2014-9820: Heap overflow in xpm files (bsc#984150).\n- CVE-2014-9823: Heap overflow in palm file (bsc#984401).\n- CVE-2014-9822: Heap overflow in quantum file (bsc#984187).\n- CVE-2014-9825: Heap overflow in corrupted psd file (bsc#984427).\n- CVE-2014-9824: Heap overflow in psd file (bsc#984185).\n- CVE-2014-9809: SEGV due to corrupted xwd images. (bsc#983799).\n- CVE-2014-9826: Incorrect error handling in sun files (bsc#984186).\n- CVE-2014-9843: Incorrect boundary checks in DecodePSDPixels (bsc#984179).\n- CVE-2014-9842: Memory leak in psd handling (bsc#984374).\n- CVE-2014-9841: Throwing of exceptions in psd handling (bsc#984172).\n- CVE-2014-9840: Out of bound access in palm file (bsc#984433).\n- CVE-2014-9847: Incorrect handling of \u0027previous\u0027 image in the JNG decoder (bsc#984144).\n- CVE-2014-9846: Added checks to prevent overflow in rle file. (bsc#983521).\n- CVE-2014-9845: Crash due to corrupted dib file (bsc#984394).\n- CVE-2014-9844: Out of bound issue in rle file (bsc#984373).\n- CVE-2014-9849: Crash in png coder (bsc#984018).\n- CVE-2014-9848: Memory leak in quantum management (bsc#984404).\n- CVE-2014-9807: Double free in pdb coder. (bsc#983794).\n- CVE-2014-9829: Out of bound access in sun file (bsc#984409).\n- CVE-2014-9832: Heap overflow in pcx file (bsc#984183).\n- CVE-2014-9805: SEGV due to a corrupted pnm file. (bsc#983752).\n- CVE-2016-4564: The DrawImage function in MagickCore/draw.c in ImageMagick made an incorrect function call in attempting to locate the next token, which allowed remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file (bsc#983308).\n- CVE-2016-4563: The TraceStrokePolygon function in MagickCore/draw.c in ImageMagick mishandled the relationship between the BezierQuantum value and certain strokes data, which allowed remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file (bsc#983305).\n- CVE-2016-4562: The DrawDashPolygon function in MagickCore/draw.c in ImageMagick mishandled calculations of certain vertices integer data, which allowed remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file (bsc#983292).\n- CVE-2014-9839: Theoretical out of bound access in magick/colormap-private.h (bsc#984379).\n- CVE-2016-5689: NULL ptr dereference in dcm coder (bsc#985460).\n- CVE-2014-9837: Additional PNM sanity checks (bsc#984166).\n- CVE-2014-9835: Heap overflow in wpf file (bsc#984145).\n- CVE-2014-9828: Corrupted (too many colors) psd file (bsc#984028).\n- CVE-2016-5841: Integer overflow could have read to RCE (bnc#986609).\n- CVE-2016-5842: Out-of-bounds read in MagickCore/property.c:1396 could have lead to memory leak (bnc#986608).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-DESKTOP-12-SP1-2016-1041,SUSE-SLE-SDK-12-SP1-2016-1041,SUSE-SLE-SERVER-12-SP1-2016-1041,SUSE-SLE-WE-12-SP1-2016-1041",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2016_1784-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2016:1784-1",
"url": "https://www.suse.com/support/update/announcement/2016/suse-su-20161784-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2016:1784-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2016-July/002153.html"
},
{
"category": "self",
"summary": "SUSE Bug 983232",
"url": "https://bugzilla.suse.com/983232"
},
{
"category": "self",
"summary": "SUSE Bug 983234",
"url": "https://bugzilla.suse.com/983234"
},
{
"category": "self",
"summary": "SUSE Bug 983253",
"url": "https://bugzilla.suse.com/983253"
},
{
"category": "self",
"summary": "SUSE Bug 983259",
"url": "https://bugzilla.suse.com/983259"
},
{
"category": "self",
"summary": "SUSE Bug 983292",
"url": "https://bugzilla.suse.com/983292"
},
{
"category": "self",
"summary": "SUSE Bug 983305",
"url": "https://bugzilla.suse.com/983305"
},
{
"category": "self",
"summary": "SUSE Bug 983308",
"url": "https://bugzilla.suse.com/983308"
},
{
"category": "self",
"summary": "SUSE Bug 983521",
"url": "https://bugzilla.suse.com/983521"
},
{
"category": "self",
"summary": "SUSE Bug 983523",
"url": "https://bugzilla.suse.com/983523"
},
{
"category": "self",
"summary": "SUSE Bug 983527",
"url": "https://bugzilla.suse.com/983527"
},
{
"category": "self",
"summary": "SUSE Bug 983533",
"url": "https://bugzilla.suse.com/983533"
},
{
"category": "self",
"summary": "SUSE Bug 983739",
"url": "https://bugzilla.suse.com/983739"
},
{
"category": "self",
"summary": "SUSE Bug 983746",
"url": "https://bugzilla.suse.com/983746"
},
{
"category": "self",
"summary": "SUSE Bug 983752",
"url": "https://bugzilla.suse.com/983752"
},
{
"category": "self",
"summary": "SUSE Bug 983774",
"url": "https://bugzilla.suse.com/983774"
},
{
"category": "self",
"summary": "SUSE Bug 983794",
"url": "https://bugzilla.suse.com/983794"
},
{
"category": "self",
"summary": "SUSE Bug 983796",
"url": "https://bugzilla.suse.com/983796"
},
{
"category": "self",
"summary": "SUSE Bug 983799",
"url": "https://bugzilla.suse.com/983799"
},
{
"category": "self",
"summary": "SUSE Bug 983803",
"url": "https://bugzilla.suse.com/983803"
},
{
"category": "self",
"summary": "SUSE Bug 984014",
"url": "https://bugzilla.suse.com/984014"
},
{
"category": "self",
"summary": "SUSE Bug 984018",
"url": "https://bugzilla.suse.com/984018"
},
{
"category": "self",
"summary": "SUSE Bug 984023",
"url": "https://bugzilla.suse.com/984023"
},
{
"category": "self",
"summary": "SUSE Bug 984028",
"url": "https://bugzilla.suse.com/984028"
},
{
"category": "self",
"summary": "SUSE Bug 984032",
"url": "https://bugzilla.suse.com/984032"
},
{
"category": "self",
"summary": "SUSE Bug 984035",
"url": "https://bugzilla.suse.com/984035"
},
{
"category": "self",
"summary": "SUSE Bug 984135",
"url": "https://bugzilla.suse.com/984135"
},
{
"category": "self",
"summary": "SUSE Bug 984137",
"url": "https://bugzilla.suse.com/984137"
},
{
"category": "self",
"summary": "SUSE Bug 984142",
"url": "https://bugzilla.suse.com/984142"
},
{
"category": "self",
"summary": "SUSE Bug 984144",
"url": "https://bugzilla.suse.com/984144"
},
{
"category": "self",
"summary": "SUSE Bug 984145",
"url": "https://bugzilla.suse.com/984145"
},
{
"category": "self",
"summary": "SUSE Bug 984149",
"url": "https://bugzilla.suse.com/984149"
},
{
"category": "self",
"summary": "SUSE Bug 984150",
"url": "https://bugzilla.suse.com/984150"
},
{
"category": "self",
"summary": "SUSE Bug 984160",
"url": "https://bugzilla.suse.com/984160"
},
{
"category": "self",
"summary": "SUSE Bug 984166",
"url": "https://bugzilla.suse.com/984166"
},
{
"category": "self",
"summary": "SUSE Bug 984172",
"url": "https://bugzilla.suse.com/984172"
},
{
"category": "self",
"summary": "SUSE Bug 984179",
"url": "https://bugzilla.suse.com/984179"
},
{
"category": "self",
"summary": "SUSE Bug 984181",
"url": "https://bugzilla.suse.com/984181"
},
{
"category": "self",
"summary": "SUSE Bug 984183",
"url": "https://bugzilla.suse.com/984183"
},
{
"category": "self",
"summary": "SUSE Bug 984184",
"url": "https://bugzilla.suse.com/984184"
},
{
"category": "self",
"summary": "SUSE Bug 984185",
"url": "https://bugzilla.suse.com/984185"
},
{
"category": "self",
"summary": "SUSE Bug 984186",
"url": "https://bugzilla.suse.com/984186"
},
{
"category": "self",
"summary": "SUSE Bug 984187",
"url": "https://bugzilla.suse.com/984187"
},
{
"category": "self",
"summary": "SUSE Bug 984191",
"url": "https://bugzilla.suse.com/984191"
},
{
"category": "self",
"summary": "SUSE Bug 984193",
"url": "https://bugzilla.suse.com/984193"
},
{
"category": "self",
"summary": "SUSE Bug 984370",
"url": "https://bugzilla.suse.com/984370"
},
{
"category": "self",
"summary": "SUSE Bug 984372",
"url": "https://bugzilla.suse.com/984372"
},
{
"category": "self",
"summary": "SUSE Bug 984373",
"url": "https://bugzilla.suse.com/984373"
},
{
"category": "self",
"summary": "SUSE Bug 984374",
"url": "https://bugzilla.suse.com/984374"
},
{
"category": "self",
"summary": "SUSE Bug 984375",
"url": "https://bugzilla.suse.com/984375"
},
{
"category": "self",
"summary": "SUSE Bug 984379",
"url": "https://bugzilla.suse.com/984379"
},
{
"category": "self",
"summary": "SUSE Bug 984394",
"url": "https://bugzilla.suse.com/984394"
},
{
"category": "self",
"summary": "SUSE Bug 984398",
"url": "https://bugzilla.suse.com/984398"
},
{
"category": "self",
"summary": "SUSE Bug 984400",
"url": "https://bugzilla.suse.com/984400"
},
{
"category": "self",
"summary": "SUSE Bug 984401",
"url": "https://bugzilla.suse.com/984401"
},
{
"category": "self",
"summary": "SUSE Bug 984404",
"url": "https://bugzilla.suse.com/984404"
},
{
"category": "self",
"summary": "SUSE Bug 984406",
"url": "https://bugzilla.suse.com/984406"
},
{
"category": "self",
"summary": "SUSE Bug 984408",
"url": "https://bugzilla.suse.com/984408"
},
{
"category": "self",
"summary": "SUSE Bug 984409",
"url": "https://bugzilla.suse.com/984409"
},
{
"category": "self",
"summary": "SUSE Bug 984427",
"url": "https://bugzilla.suse.com/984427"
},
{
"category": "self",
"summary": "SUSE Bug 984433",
"url": "https://bugzilla.suse.com/984433"
},
{
"category": "self",
"summary": "SUSE Bug 984436",
"url": "https://bugzilla.suse.com/984436"
},
{
"category": "self",
"summary": "SUSE Bug 985442",
"url": "https://bugzilla.suse.com/985442"
},
{
"category": "self",
"summary": "SUSE Bug 985448",
"url": "https://bugzilla.suse.com/985448"
},
{
"category": "self",
"summary": "SUSE Bug 985451",
"url": "https://bugzilla.suse.com/985451"
},
{
"category": "self",
"summary": "SUSE Bug 985456",
"url": "https://bugzilla.suse.com/985456"
},
{
"category": "self",
"summary": "SUSE Bug 985460",
"url": "https://bugzilla.suse.com/985460"
},
{
"category": "self",
"summary": "SUSE Bug 986608",
"url": "https://bugzilla.suse.com/986608"
},
{
"category": "self",
"summary": "SUSE Bug 986609",
"url": "https://bugzilla.suse.com/986609"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9805 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9805/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9806 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9806/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9807 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9807/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9808 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9809 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9809/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9810 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9810/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9811 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9812 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9812/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9813 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9814 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9815 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9816 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9816/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9817 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9818 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9818/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9819 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9820 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9821 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9822 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9822/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9823 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9823/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9824 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9824/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9825 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9825/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9826 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9826/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9828 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9829 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9830 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9830/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9831 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9831/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9832 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9832/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9833 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9833/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9834 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9834/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9835 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9836 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9837 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9837/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9838 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9838/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9839 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9839/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9840 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9840/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9841 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9841/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9842 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9842/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9843 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9843/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9844 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9844/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9845 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9846 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9846/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9847 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9847/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9848 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9848/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9849 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9849/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9850 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9850/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9851 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9851/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9852 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9852/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9853 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9853/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9854 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9854/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8894 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8894/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8895 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8895/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8896 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8897 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8897/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8898 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8900 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8900/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8901 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8901/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8902 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8902/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8903 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8903/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-4562 page",
"url": "https://www.suse.com/security/cve/CVE-2016-4562/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-4563 page",
"url": "https://www.suse.com/security/cve/CVE-2016-4563/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-4564 page",
"url": "https://www.suse.com/security/cve/CVE-2016-4564/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5687 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5688 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5688/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5689 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5690 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5690/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5691 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5841 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5841/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5842 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5842/"
}
],
"title": "Security update for ImageMagick",
"tracking": {
"current_release_date": "2016-07-11T10:11:26Z",
"generator": {
"date": "2016-07-11T10:11:26Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2016:1784-1",
"initial_release_date": "2016-07-11T10:11:26Z",
"revision_history": [
{
"date": "2016-07-11T10:11:26Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-6.8.8.1-30.2.ppc64le",
"product": {
"name": "ImageMagick-6.8.8.1-30.2.ppc64le",
"product_id": "ImageMagick-6.8.8.1-30.2.ppc64le"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"product": {
"name": "ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"product_id": "ImageMagick-devel-6.8.8.1-30.2.ppc64le"
}
},
{
"category": "product_version",
"name": "libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"product": {
"name": "libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"product_id": "libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-6.8.8.1-30.2.ppc64le",
"product": {
"name": "libMagick++-devel-6.8.8.1-30.2.ppc64le",
"product_id": "libMagick++-devel-6.8.8.1-30.2.ppc64le"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"product": {
"name": "perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"product_id": "perl-PerlMagick-6.8.8.1-30.2.ppc64le"
}
},
{
"category": "product_version",
"name": "libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"product": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"product_id": "libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le"
}
},
{
"category": "product_version",
"name": "libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"product": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"product_id": "libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-6.8.8.1-30.2.s390x",
"product": {
"name": "ImageMagick-6.8.8.1-30.2.s390x",
"product_id": "ImageMagick-6.8.8.1-30.2.s390x"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-6.8.8.1-30.2.s390x",
"product": {
"name": "ImageMagick-devel-6.8.8.1-30.2.s390x",
"product_id": "ImageMagick-devel-6.8.8.1-30.2.s390x"
}
},
{
"category": "product_version",
"name": "libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"product": {
"name": "libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"product_id": "libMagick++-6_Q16-3-6.8.8.1-30.2.s390x"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-6.8.8.1-30.2.s390x",
"product": {
"name": "libMagick++-devel-6.8.8.1-30.2.s390x",
"product_id": "libMagick++-devel-6.8.8.1-30.2.s390x"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-6.8.8.1-30.2.s390x",
"product": {
"name": "perl-PerlMagick-6.8.8.1-30.2.s390x",
"product_id": "perl-PerlMagick-6.8.8.1-30.2.s390x"
}
},
{
"category": "product_version",
"name": "libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"product": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"product_id": "libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x"
}
},
{
"category": "product_version",
"name": "libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"product": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"product_id": "libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-6.8.8.1-30.2.x86_64",
"product": {
"name": "ImageMagick-6.8.8.1-30.2.x86_64",
"product_id": "ImageMagick-6.8.8.1-30.2.x86_64"
}
},
{
"category": "product_version",
"name": "libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"product": {
"name": "libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"product_id": "libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64"
}
},
{
"category": "product_version",
"name": "libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"product": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"product_id": "libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64"
}
},
{
"category": "product_version",
"name": "libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"product": {
"name": "libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"product_id": "libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
}
},
{
"category": "product_version",
"name": "libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"product": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"product_id": "libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-6.8.8.1-30.2.x86_64",
"product": {
"name": "ImageMagick-devel-6.8.8.1-30.2.x86_64",
"product_id": "ImageMagick-devel-6.8.8.1-30.2.x86_64"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-6.8.8.1-30.2.x86_64",
"product": {
"name": "libMagick++-devel-6.8.8.1-30.2.x86_64",
"product_id": "libMagick++-devel-6.8.8.1-30.2.x86_64"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-6.8.8.1-30.2.x86_64",
"product": {
"name": "perl-PerlMagick-6.8.8.1-30.2.x86_64",
"product_id": "perl-PerlMagick-6.8.8.1-30.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 12 SP1",
"product": {
"name": "SUSE Linux Enterprise Desktop 12 SP1",
"product_id": "SUSE Linux Enterprise Desktop 12 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sled:12:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP1",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP1",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP1",
"product_id": "SUSE Linux Enterprise Server 12 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Workstation Extension 12 SP1",
"product": {
"name": "SUSE Linux Enterprise Workstation Extension 12 SP1",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-we:12:sp1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.8.8.1-30.2.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP1",
"product_id": "SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64"
},
"product_reference": "ImageMagick-6.8.8.1-30.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP1",
"product_id": "SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64"
},
"product_reference": "libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP1",
"product_id": "SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP1",
"product_id": "SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
},
"product_reference": "libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP1",
"product_id": "SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.8.8.1-30.2.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le"
},
"product_reference": "ImageMagick-6.8.8.1-30.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.8.8.1-30.2.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x"
},
"product_reference": "ImageMagick-6.8.8.1-30.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.8.8.1-30.2.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64"
},
"product_reference": "ImageMagick-6.8.8.1-30.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.8.8.1-30.2.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le"
},
"product_reference": "ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.8.8.1-30.2.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x"
},
"product_reference": "ImageMagick-devel-6.8.8.1-30.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.8.8.1-30.2.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64"
},
"product_reference": "ImageMagick-devel-6.8.8.1-30.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le"
},
"product_reference": "libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-6_Q16-3-6.8.8.1-30.2.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x"
},
"product_reference": "libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64"
},
"product_reference": "libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.8.8.1-30.2.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le"
},
"product_reference": "libMagick++-devel-6.8.8.1-30.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.8.8.1-30.2.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x"
},
"product_reference": "libMagick++-devel-6.8.8.1-30.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.8.8.1-30.2.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64"
},
"product_reference": "libMagick++-devel-6.8.8.1-30.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.8.8.1-30.2.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le"
},
"product_reference": "perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.8.8.1-30.2.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x"
},
"product_reference": "perl-PerlMagick-6.8.8.1-30.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.8.8.1-30.2.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64"
},
"product_reference": "perl-PerlMagick-6.8.8.1-30.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP1",
"product_id": "SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x as component of SUSE Linux Enterprise Server 12 SP1",
"product_id": "SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP1",
"product_id": "SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP1",
"product_id": "SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x as component of SUSE Linux Enterprise Server 12 SP1",
"product_id": "SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP1",
"product_id": "SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64"
},
"product_reference": "libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64"
},
"product_reference": "libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.8.8.1-30.2.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP1",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64"
},
"product_reference": "ImageMagick-6.8.8.1-30.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP1",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64"
},
"product_reference": "libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP1",
"product_id": "SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
},
"product_reference": "libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-9805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9805"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted pnm file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9805",
"url": "https://www.suse.com/security/cve/CVE-2014-9805"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9805",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983752 for CVE-2014-9805",
"url": "https://bugzilla.suse.com/983752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9805"
},
{
"cve": "CVE-2014-9806",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9806"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (file descriptor consumption) via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9806",
"url": "https://www.suse.com/security/cve/CVE-2014-9806"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9806",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983774 for CVE-2014-9806",
"url": "https://bugzilla.suse.com/983774"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9806"
},
{
"cve": "CVE-2014-9807",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9807"
}
],
"notes": [
{
"category": "general",
"text": "The pdb coder in ImageMagick allows remote attackers to cause a denial of service (double free) via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9807",
"url": "https://www.suse.com/security/cve/CVE-2014-9807"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9807",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983794 for CVE-2014-9807",
"url": "https://bugzilla.suse.com/983794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9807"
},
{
"cve": "CVE-2014-9808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9808"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted dpc image.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9808",
"url": "https://www.suse.com/security/cve/CVE-2014-9808"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9808",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983796 for CVE-2014-9808",
"url": "https://bugzilla.suse.com/983796"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9808"
},
{
"cve": "CVE-2014-9809",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9809"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted xwd image.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9809",
"url": "https://www.suse.com/security/cve/CVE-2014-9809"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9809",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983799 for CVE-2014-9809",
"url": "https://bugzilla.suse.com/983799"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9809"
},
{
"cve": "CVE-2014-9810",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9810"
}
],
"notes": [
{
"category": "general",
"text": "The dpx file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed dpx file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9810",
"url": "https://www.suse.com/security/cve/CVE-2014-9810"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9810",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983803 for CVE-2014-9810",
"url": "https://bugzilla.suse.com/983803"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9810"
},
{
"cve": "CVE-2014-9811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9811"
}
],
"notes": [
{
"category": "general",
"text": "The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9811",
"url": "https://www.suse.com/security/cve/CVE-2014-9811"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9811",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984032 for CVE-2014-9811",
"url": "https://bugzilla.suse.com/984032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9811"
},
{
"cve": "CVE-2014-9812",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9812"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted ps file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9812",
"url": "https://www.suse.com/security/cve/CVE-2014-9812"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9812",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984137 for CVE-2014-9812",
"url": "https://bugzilla.suse.com/984137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9812"
},
{
"cve": "CVE-2014-9813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9813"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted viff file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9813",
"url": "https://www.suse.com/security/cve/CVE-2014-9813"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9813",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984035 for CVE-2014-9813",
"url": "https://bugzilla.suse.com/984035"
},
{
"category": "external",
"summary": "SUSE Bug 984398 for CVE-2014-9813",
"url": "https://bugzilla.suse.com/984398"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9813"
},
{
"cve": "CVE-2014-9814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9814"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted wpg file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9814",
"url": "https://www.suse.com/security/cve/CVE-2014-9814"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9814",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984193 for CVE-2014-9814",
"url": "https://bugzilla.suse.com/984193"
},
{
"category": "external",
"summary": "SUSE Bug 984372 for CVE-2014-9814",
"url": "https://bugzilla.suse.com/984372"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9814"
},
{
"cve": "CVE-2014-9815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9815"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted wpg file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9815",
"url": "https://www.suse.com/security/cve/CVE-2014-9815"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9815",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984372 for CVE-2014-9815",
"url": "https://bugzilla.suse.com/984372"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9815"
},
{
"cve": "CVE-2014-9816",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9816"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted viff file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9816",
"url": "https://www.suse.com/security/cve/CVE-2014-9816"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9816",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984035 for CVE-2014-9816",
"url": "https://bugzilla.suse.com/984035"
},
{
"category": "external",
"summary": "SUSE Bug 984398 for CVE-2014-9816",
"url": "https://bugzilla.suse.com/984398"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9816"
},
{
"cve": "CVE-2014-9817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9817"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pdb file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9817",
"url": "https://www.suse.com/security/cve/CVE-2014-9817"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9817",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984400 for CVE-2014-9817",
"url": "https://bugzilla.suse.com/984400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9817"
},
{
"cve": "CVE-2014-9818",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9818"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a malformed sun file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9818",
"url": "https://www.suse.com/security/cve/CVE-2014-9818"
},
{
"category": "external",
"summary": "SUSE Bug 1000690 for CVE-2014-9818",
"url": "https://bugzilla.suse.com/1000690"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9818",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984181 for CVE-2014-9818",
"url": "https://bugzilla.suse.com/984181"
},
{
"category": "external",
"summary": "SUSE Bug 984186 for CVE-2014-9818",
"url": "https://bugzilla.suse.com/984186"
},
{
"category": "external",
"summary": "SUSE Bug 984409 for CVE-2014-9818",
"url": "https://bugzilla.suse.com/984409"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9818"
},
{
"cve": "CVE-2014-9819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9819"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerability than CVE-2014-9823.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9819",
"url": "https://www.suse.com/security/cve/CVE-2014-9819"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9819",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984142 for CVE-2014-9819",
"url": "https://bugzilla.suse.com/984142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9819"
},
{
"cve": "CVE-2014-9820",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9820"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pnm file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9820",
"url": "https://www.suse.com/security/cve/CVE-2014-9820"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9820",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984150 for CVE-2014-9820",
"url": "https://bugzilla.suse.com/984150"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9820"
},
{
"cve": "CVE-2014-9821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9821"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted xpm file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9821",
"url": "https://www.suse.com/security/cve/CVE-2014-9821"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9821",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984014 for CVE-2014-9821",
"url": "https://bugzilla.suse.com/984014"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9821"
},
{
"cve": "CVE-2014-9822",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9822"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted quantum file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9822",
"url": "https://www.suse.com/security/cve/CVE-2014-9822"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9822",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984187 for CVE-2014-9822",
"url": "https://bugzilla.suse.com/984187"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9822"
},
{
"cve": "CVE-2014-9823",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9823"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerability than CVE-2014-9819.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9823",
"url": "https://www.suse.com/security/cve/CVE-2014-9823"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9823",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984401 for CVE-2014-9823",
"url": "https://bugzilla.suse.com/984401"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9823"
},
{
"cve": "CVE-2014-9824",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9824"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different vulnerability than CVE-2014-9825.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9824",
"url": "https://www.suse.com/security/cve/CVE-2014-9824"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9824",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984185 for CVE-2014-9824",
"url": "https://bugzilla.suse.com/984185"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9824"
},
{
"cve": "CVE-2014-9825",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9825"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different vulnerability than CVE-2014-9824.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9825",
"url": "https://www.suse.com/security/cve/CVE-2014-9825"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9825",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984427 for CVE-2014-9825",
"url": "https://bugzilla.suse.com/984427"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9825"
},
{
"cve": "CVE-2014-9826",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9826"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to have unspecified impact via vectors related to error handling in sun files.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9826",
"url": "https://www.suse.com/security/cve/CVE-2014-9826"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9826",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984186 for CVE-2014-9826",
"url": "https://bugzilla.suse.com/984186"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "low"
}
],
"title": "CVE-2014-9826"
},
{
"cve": "CVE-2014-9828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9828"
}
],
"notes": [
{
"category": "general",
"text": "coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9828",
"url": "https://www.suse.com/security/cve/CVE-2014-9828"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9828",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984028 for CVE-2014-9828",
"url": "https://bugzilla.suse.com/984028"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9828"
},
{
"cve": "CVE-2014-9829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9829"
}
],
"notes": [
{
"category": "general",
"text": "coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted sun file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9829",
"url": "https://www.suse.com/security/cve/CVE-2014-9829"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9829",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984409 for CVE-2014-9829",
"url": "https://bugzilla.suse.com/984409"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9829"
},
{
"cve": "CVE-2014-9830",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9830"
}
],
"notes": [
{
"category": "general",
"text": "coders/sun.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted sun file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9830",
"url": "https://www.suse.com/security/cve/CVE-2014-9830"
},
{
"category": "external",
"summary": "SUSE Bug 1000690 for CVE-2014-9830",
"url": "https://bugzilla.suse.com/1000690"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9830",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984135 for CVE-2014-9830",
"url": "https://bugzilla.suse.com/984135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9830"
},
{
"cve": "CVE-2014-9831",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9831"
}
],
"notes": [
{
"category": "general",
"text": "coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted wpg file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9831",
"url": "https://www.suse.com/security/cve/CVE-2014-9831"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9831",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984375 for CVE-2014-9831",
"url": "https://bugzilla.suse.com/984375"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9831"
},
{
"cve": "CVE-2014-9832",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9832"
}
],
"notes": [
{
"category": "general",
"text": "Heap overflow in ImageMagick 6.8.9-9 via a crafted pcx file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9832",
"url": "https://www.suse.com/security/cve/CVE-2014-9832"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9832",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984183 for CVE-2014-9832",
"url": "https://bugzilla.suse.com/984183"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9832"
},
{
"cve": "CVE-2014-9833",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9833"
}
],
"notes": [
{
"category": "general",
"text": "Heap overflow in ImageMagick 6.8.9-9 via a crafted psd file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9833",
"url": "https://www.suse.com/security/cve/CVE-2014-9833"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9833",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984406 for CVE-2014-9833",
"url": "https://bugzilla.suse.com/984406"
},
{
"category": "external",
"summary": "SUSE Bug 984427 for CVE-2014-9833",
"url": "https://bugzilla.suse.com/984427"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9833"
},
{
"cve": "CVE-2014-9834",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9834"
}
],
"notes": [
{
"category": "general",
"text": "Heap overflow in ImageMagick 6.8.9-9 via a crafted pict file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9834",
"url": "https://www.suse.com/security/cve/CVE-2014-9834"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9834",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984436 for CVE-2014-9834",
"url": "https://bugzilla.suse.com/984436"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9834"
},
{
"cve": "CVE-2014-9835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9835"
}
],
"notes": [
{
"category": "general",
"text": "Heap overflow in ImageMagick 6.8.9-9 via a crafted wpf file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9835",
"url": "https://www.suse.com/security/cve/CVE-2014-9835"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9835",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984145 for CVE-2014-9835",
"url": "https://bugzilla.suse.com/984145"
},
{
"category": "external",
"summary": "SUSE Bug 984375 for CVE-2014-9835",
"url": "https://bugzilla.suse.com/984375"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9835"
},
{
"cve": "CVE-2014-9836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9836"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service via a crafted xpm file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9836",
"url": "https://www.suse.com/security/cve/CVE-2014-9836"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9836",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984023 for CVE-2014-9836",
"url": "https://bugzilla.suse.com/984023"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9836"
},
{
"cve": "CVE-2014-9837",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9837"
}
],
"notes": [
{
"category": "general",
"text": "coders/pnm.c in ImageMagick 6.9.0-1 Beta and earlier allows remote attackers to cause a denial of service (crash) via a crafted png file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9837",
"url": "https://www.suse.com/security/cve/CVE-2014-9837"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9837",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984166 for CVE-2014-9837",
"url": "https://bugzilla.suse.com/984166"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9837"
},
{
"cve": "CVE-2014-9838",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9838"
}
],
"notes": [
{
"category": "general",
"text": "magick/cache.c in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (crash).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9838",
"url": "https://www.suse.com/security/cve/CVE-2014-9838"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9838",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984370 for CVE-2014-9838",
"url": "https://bugzilla.suse.com/984370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9838"
},
{
"cve": "CVE-2014-9839",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9839"
}
],
"notes": [
{
"category": "general",
"text": "magick/colormap-private.h in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9839",
"url": "https://www.suse.com/security/cve/CVE-2014-9839"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9839",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984379 for CVE-2014-9839",
"url": "https://bugzilla.suse.com/984379"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9839"
},
{
"cve": "CVE-2014-9840",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9840"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted palm file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9840",
"url": "https://www.suse.com/security/cve/CVE-2014-9840"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9840",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984433 for CVE-2014-9840",
"url": "https://bugzilla.suse.com/984433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9840"
},
{
"cve": "CVE-2014-9841",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9841"
}
],
"notes": [
{
"category": "general",
"text": "The ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors, related to \"throwing of exceptions.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9841",
"url": "https://www.suse.com/security/cve/CVE-2014-9841"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9841",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984172 for CVE-2014-9841",
"url": "https://bugzilla.suse.com/984172"
},
{
"category": "external",
"summary": "SUSE Bug 984186 for CVE-2014-9841",
"url": "https://bugzilla.suse.com/984186"
},
{
"category": "external",
"summary": "SUSE Bug 984374 for CVE-2014-9841",
"url": "https://bugzilla.suse.com/984374"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9841"
},
{
"cve": "CVE-2014-9842",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9842"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9842",
"url": "https://www.suse.com/security/cve/CVE-2014-9842"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9842",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984172 for CVE-2014-9842",
"url": "https://bugzilla.suse.com/984172"
},
{
"category": "external",
"summary": "SUSE Bug 984374 for CVE-2014-9842",
"url": "https://bugzilla.suse.com/984374"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9842"
},
{
"cve": "CVE-2014-9843",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9843"
}
],
"notes": [
{
"category": "general",
"text": "The DecodePSDPixels function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9843",
"url": "https://www.suse.com/security/cve/CVE-2014-9843"
},
{
"category": "external",
"summary": "SUSE Bug 1000697 for CVE-2014-9843",
"url": "https://bugzilla.suse.com/1000697"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9843",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984179 for CVE-2014-9843",
"url": "https://bugzilla.suse.com/984179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9843"
},
{
"cve": "CVE-2014-9844",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9844"
}
],
"notes": [
{
"category": "general",
"text": "The ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9844",
"url": "https://www.suse.com/security/cve/CVE-2014-9844"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9844",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984373 for CVE-2014-9844",
"url": "https://bugzilla.suse.com/984373"
},
{
"category": "external",
"summary": "SUSE Bug 984408 for CVE-2014-9844",
"url": "https://bugzilla.suse.com/984408"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9844"
},
{
"cve": "CVE-2014-9845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9845"
}
],
"notes": [
{
"category": "general",
"text": "The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service (crash) via a corrupted dib file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9845",
"url": "https://www.suse.com/security/cve/CVE-2014-9845"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9845",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984394 for CVE-2014-9845",
"url": "https://bugzilla.suse.com/984394"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9845"
},
{
"cve": "CVE-2014-9846",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9846"
}
],
"notes": [
{
"category": "general",
"text": "Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9846",
"url": "https://www.suse.com/security/cve/CVE-2014-9846"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9846",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983521 for CVE-2014-9846",
"url": "https://bugzilla.suse.com/983521"
},
{
"category": "external",
"summary": "SUSE Bug 984408 for CVE-2014-9846",
"url": "https://bugzilla.suse.com/984408"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9846"
},
{
"cve": "CVE-2014-9847",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9847"
}
],
"notes": [
{
"category": "general",
"text": "The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9847",
"url": "https://www.suse.com/security/cve/CVE-2014-9847"
},
{
"category": "external",
"summary": "SUSE Bug 1040304 for CVE-2014-9847",
"url": "https://bugzilla.suse.com/1040304"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9847",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984144 for CVE-2014-9847",
"url": "https://bugzilla.suse.com/984144"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9847"
},
{
"cve": "CVE-2014-9848",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9848"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in ImageMagick allows remote attackers to cause a denial of service (memory consumption).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9848",
"url": "https://www.suse.com/security/cve/CVE-2014-9848"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9848",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984404 for CVE-2014-9848",
"url": "https://bugzilla.suse.com/984404"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9848"
},
{
"cve": "CVE-2014-9849",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9849"
}
],
"notes": [
{
"category": "general",
"text": "The png coder in ImageMagick allows remote attackers to cause a denial of service (crash).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9849",
"url": "https://www.suse.com/security/cve/CVE-2014-9849"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9849",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984018 for CVE-2014-9849",
"url": "https://bugzilla.suse.com/984018"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9849"
},
{
"cve": "CVE-2014-9850",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9850"
}
],
"notes": [
{
"category": "general",
"text": "Logic error in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (resource consumption).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9850",
"url": "https://www.suse.com/security/cve/CVE-2014-9850"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9850",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984149 for CVE-2014-9850",
"url": "https://bugzilla.suse.com/984149"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9850"
},
{
"cve": "CVE-2014-9851",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9851"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (application crash).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9851",
"url": "https://www.suse.com/security/cve/CVE-2014-9851"
},
{
"category": "external",
"summary": "SUSE Bug 1106989 for CVE-2014-9851",
"url": "https://bugzilla.suse.com/1106989"
},
{
"category": "external",
"summary": "SUSE Bug 1106996 for CVE-2014-9851",
"url": "https://bugzilla.suse.com/1106996"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9851",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984160 for CVE-2014-9851",
"url": "https://bugzilla.suse.com/984160"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9851"
},
{
"cve": "CVE-2014-9852",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9852"
}
],
"notes": [
{
"category": "general",
"text": "distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9852",
"url": "https://www.suse.com/security/cve/CVE-2014-9852"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9852",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984191 for CVE-2014-9852",
"url": "https://bugzilla.suse.com/984191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9852"
},
{
"cve": "CVE-2014-9853",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9853"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9853",
"url": "https://www.suse.com/security/cve/CVE-2014-9853"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9853",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984408 for CVE-2014-9853",
"url": "https://bugzilla.suse.com/984408"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9853"
},
{
"cve": "CVE-2014-9854",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9854"
}
],
"notes": [
{
"category": "general",
"text": "coders/tiff.c in ImageMagick allows remote attackers to cause a denial of service (application crash) via vectors related to the \"identification of image.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9854",
"url": "https://www.suse.com/security/cve/CVE-2014-9854"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9854",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984184 for CVE-2014-9854",
"url": "https://bugzilla.suse.com/984184"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9854"
},
{
"cve": "CVE-2015-8894",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8894"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in coders/tga.c in ImageMagick 7.0.0 and later allows remote attackers to cause a denial of service (application crash) via a crafted tga file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8894",
"url": "https://www.suse.com/security/cve/CVE-2015-8894"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2015-8894",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983523 for CVE-2015-8894",
"url": "https://bugzilla.suse.com/983523"
},
{
"category": "external",
"summary": "SUSE Bug 983533 for CVE-2015-8894",
"url": "https://bugzilla.suse.com/983533"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2015-8894"
},
{
"cve": "CVE-2015-8895",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8895"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflow in coders/icon.c in ImageMagick 6.9.1-3 and later allows remote attackers to cause a denial of service (application crash) via a crafted length value, which triggers a buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8895",
"url": "https://www.suse.com/security/cve/CVE-2015-8895"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2015-8895",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983527 for CVE-2015-8895",
"url": "https://bugzilla.suse.com/983527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2015-8895"
},
{
"cve": "CVE-2015-8896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8896"
}
],
"notes": [
{
"category": "general",
"text": "Integer truncation issue in coders/pict.c in ImageMagick before 7.0.5-0 allows remote attackers to cause a denial of service (application crash) via a crafted .pict file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8896",
"url": "https://www.suse.com/security/cve/CVE-2015-8896"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2015-8896",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983533 for CVE-2015-8896",
"url": "https://bugzilla.suse.com/983533"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2015-8896"
},
{
"cve": "CVE-2015-8897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8897"
}
],
"notes": [
{
"category": "general",
"text": "The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (application crash) via a crafted png file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8897",
"url": "https://www.suse.com/security/cve/CVE-2015-8897"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2015-8897",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983739 for CVE-2015-8897",
"url": "https://bugzilla.suse.com/983739"
},
{
"category": "external",
"summary": "SUSE Bug 983746 for CVE-2015-8897",
"url": "https://bugzilla.suse.com/983746"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "low"
}
],
"title": "CVE-2015-8897"
},
{
"cve": "CVE-2015-8898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8898"
}
],
"notes": [
{
"category": "general",
"text": "The WriteImages function in magick/constitute.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8898",
"url": "https://www.suse.com/security/cve/CVE-2015-8898"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2015-8898",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983739 for CVE-2015-8898",
"url": "https://bugzilla.suse.com/983739"
},
{
"category": "external",
"summary": "SUSE Bug 983746 for CVE-2015-8898",
"url": "https://bugzilla.suse.com/983746"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2015-8898"
},
{
"cve": "CVE-2015-8900",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8900"
}
],
"notes": [
{
"category": "general",
"text": "The ReadHDRImage function in coders/hdr.c in ImageMagick 6.x and 7.x allows remote attackers to cause a denial of service (infinite loop) via a crafted HDR file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8900",
"url": "https://www.suse.com/security/cve/CVE-2015-8900"
},
{
"category": "external",
"summary": "SUSE Bug 983232 for CVE-2015-8900",
"url": "https://bugzilla.suse.com/983232"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2015-8900"
},
{
"cve": "CVE-2015-8901",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8901"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted MIFF file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8901",
"url": "https://www.suse.com/security/cve/CVE-2015-8901"
},
{
"category": "external",
"summary": "SUSE Bug 983234 for CVE-2015-8901",
"url": "https://bugzilla.suse.com/983234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2015-8901"
},
{
"cve": "CVE-2015-8902",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8902"
}
],
"notes": [
{
"category": "general",
"text": "The ReadBlobByte function in coders/pdb.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted PDB file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8902",
"url": "https://www.suse.com/security/cve/CVE-2015-8902"
},
{
"category": "external",
"summary": "SUSE Bug 1052711 for CVE-2015-8902",
"url": "https://bugzilla.suse.com/1052711"
},
{
"category": "external",
"summary": "SUSE Bug 983253 for CVE-2015-8902",
"url": "https://bugzilla.suse.com/983253"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2015-8902"
},
{
"cve": "CVE-2015-8903",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8903"
}
],
"notes": [
{
"category": "general",
"text": "The ReadVICARImage function in coders/vicar.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted VICAR file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8903",
"url": "https://www.suse.com/security/cve/CVE-2015-8903"
},
{
"category": "external",
"summary": "SUSE Bug 983259 for CVE-2015-8903",
"url": "https://bugzilla.suse.com/983259"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "important"
}
],
"title": "CVE-2015-8903"
},
{
"cve": "CVE-2016-4562",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-4562"
}
],
"notes": [
{
"category": "general",
"text": "The DrawDashPolygon function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 mishandles calculations of certain vertices integer data, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-4562",
"url": "https://www.suse.com/security/cve/CVE-2016-4562"
},
{
"category": "external",
"summary": "SUSE Bug 983292 for CVE-2016-4562",
"url": "https://bugzilla.suse.com/983292"
},
{
"category": "external",
"summary": "SUSE Bug 983305 for CVE-2016-4562",
"url": "https://bugzilla.suse.com/983305"
},
{
"category": "external",
"summary": "SUSE Bug 983308 for CVE-2016-4562",
"url": "https://bugzilla.suse.com/983308"
},
{
"category": "external",
"summary": "SUSE Bug 983309 for CVE-2016-4562",
"url": "https://bugzilla.suse.com/983309"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2016-4562"
},
{
"cve": "CVE-2016-4563",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-4563"
}
],
"notes": [
{
"category": "general",
"text": "The TraceStrokePolygon function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 mishandles the relationship between the BezierQuantum value and certain strokes data, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-4563",
"url": "https://www.suse.com/security/cve/CVE-2016-4563"
},
{
"category": "external",
"summary": "SUSE Bug 983305 for CVE-2016-4563",
"url": "https://bugzilla.suse.com/983305"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2016-4563"
},
{
"cve": "CVE-2016-4564",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-4564"
}
],
"notes": [
{
"category": "general",
"text": "The DrawImage function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 makes an incorrect function call in attempting to locate the next token, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-4564",
"url": "https://www.suse.com/security/cve/CVE-2016-4564"
},
{
"category": "external",
"summary": "SUSE Bug 983308 for CVE-2016-4564",
"url": "https://bugzilla.suse.com/983308"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2016-4564"
},
{
"cve": "CVE-2016-5687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5687"
}
],
"notes": [
{
"category": "general",
"text": "The VerticalFilter function in the DDS coder in ImageMagick before 6.9.4-3 and 7.x before 7.0.1-4 allows remote attackers to have unspecified impact via a crafted DDS file, which triggers an out-of-bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5687",
"url": "https://www.suse.com/security/cve/CVE-2016-5687"
},
{
"category": "external",
"summary": "SUSE Bug 1000713 for CVE-2016-5687",
"url": "https://bugzilla.suse.com/1000713"
},
{
"category": "external",
"summary": "SUSE Bug 1000714 for CVE-2016-5687",
"url": "https://bugzilla.suse.com/1000714"
},
{
"category": "external",
"summary": "SUSE Bug 1074610 for CVE-2016-5687",
"url": "https://bugzilla.suse.com/1074610"
},
{
"category": "external",
"summary": "SUSE Bug 985448 for CVE-2016-5687",
"url": "https://bugzilla.suse.com/985448"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2016-5687"
},
{
"cve": "CVE-2016-5688",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5688"
}
],
"notes": [
{
"category": "general",
"text": "The WPG parser in ImageMagick before 6.9.4-4 and 7.x before 7.0.1-5, when a memory limit is set, allows remote attackers to have unspecified impact via vectors related to the SetImageExtent return-value check, which trigger (1) a heap-based buffer overflow in the SetPixelIndex function or an invalid write operation in the (2) ScaleCharToQuantum or (3) SetPixelIndex functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5688",
"url": "https://www.suse.com/security/cve/CVE-2016-5688"
},
{
"category": "external",
"summary": "SUSE Bug 985442 for CVE-2016-5688",
"url": "https://bugzilla.suse.com/985442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2016-5688"
},
{
"cve": "CVE-2016-5689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5689"
}
],
"notes": [
{
"category": "general",
"text": "The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact by leveraging lack of NULL pointer checks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5689",
"url": "https://www.suse.com/security/cve/CVE-2016-5689"
},
{
"category": "external",
"summary": "SUSE Bug 985460 for CVE-2016-5689",
"url": "https://bugzilla.suse.com/985460"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2016-5689"
},
{
"cve": "CVE-2016-5690",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5690"
}
],
"notes": [
{
"category": "general",
"text": "The ReadDCMImage function in DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact via vectors involving the for statement in computing the pixel scaling table.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5690",
"url": "https://www.suse.com/security/cve/CVE-2016-5690"
},
{
"category": "external",
"summary": "SUSE Bug 985451 for CVE-2016-5690",
"url": "https://bugzilla.suse.com/985451"
},
{
"category": "external",
"summary": "SUSE Bug 985460 for CVE-2016-5690",
"url": "https://bugzilla.suse.com/985460"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2016-5690"
},
{
"cve": "CVE-2016-5691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5691"
}
],
"notes": [
{
"category": "general",
"text": "The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact by leveraging lack of validation of (1) pixel.red, (2) pixel.green, and (3) pixel.blue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5691",
"url": "https://www.suse.com/security/cve/CVE-2016-5691"
},
{
"category": "external",
"summary": "SUSE Bug 985456 for CVE-2016-5691",
"url": "https://bugzilla.suse.com/985456"
},
{
"category": "external",
"summary": "SUSE Bug 985460 for CVE-2016-5691",
"url": "https://bugzilla.suse.com/985460"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2016-5691"
},
{
"cve": "CVE-2016-5841",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5841"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflow in MagickCore/profile.c in ImageMagick before 7.0.2-1 allows remote attackers to cause a denial of service (segmentation fault) or possibly execute arbitrary code via vectors involving the offset variable.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5841",
"url": "https://www.suse.com/security/cve/CVE-2016-5841"
},
{
"category": "external",
"summary": "SUSE Bug 986609 for CVE-2016-5841",
"url": "https://bugzilla.suse.com/986609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2016-5841"
},
{
"cve": "CVE-2016-5842",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5842"
}
],
"notes": [
{
"category": "general",
"text": "MagickCore/property.c in ImageMagick before 7.0.2-1 allows remote attackers to obtain sensitive memory information via vectors involving the q variable, which triggers an out-of-bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5842",
"url": "https://www.suse.com/security/cve/CVE-2016-5842"
},
{
"category": "external",
"summary": "SUSE Bug 986608 for CVE-2016-5842",
"url": "https://bugzilla.suse.com/986608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Desktop 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickCore-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP1:libMagickWand-6_Q16-1-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:ImageMagick-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libMagick++-devel-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:perl-PerlMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:ImageMagick-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagick++-6_Q16-3-6.8.8.1-30.2.x86_64",
"SUSE Linux Enterprise Workstation Extension 12 SP1:libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:11:26Z",
"details": "moderate"
}
],
"title": "CVE-2016-5842"
}
]
}
suse-su-2016:1783-1
Vulnerability from csaf_suse
Published
2016-07-11 10:12
Modified
2016-07-11 10:12
Summary
Security update for GraphicsMagick
Notes
Title of the patch
Security update for GraphicsMagick
Description of the patch
GraphicsMagick was updated to fix 37 security issues.
These security issues were fixed:
- CVE-2014-9810: SEGV in dpx file handler (bsc#983803).
- CVE-2014-9811: Crash in xwd file handler (bsc#984032).
- CVE-2014-9813: Crash on corrupted viff file (bsc#984035).
- CVE-2014-9814: NULL pointer dereference in wpg file handling (bsc#984193).
- CVE-2014-9815: Crash on corrupted wpg file (bsc#984372).
- CVE-2014-9816: Out of bound access in viff image (bsc#984398).
- CVE-2014-9817: Heap buffer overflow in pdb file handling (bsc#984400).
- CVE-2014-9818: Out of bound access on malformed sun file (bsc#984181).
- CVE-2014-9819: Heap overflow in palm files (bsc#984142).
- CVE-2014-9830: Handling of corrupted sun file (bsc#984135).
- CVE-2014-9831: Handling of corrupted wpg file (bsc#984375).
- CVE-2014-9837: Additional PNM sanity checks (bsc#984166).
- CVE-2014-9834: Heap overflow in pict file (bsc#984436).
- CVE-2014-9853: Memory leak in rle file handling (bsc#984408).
- CVE-2015-8903: Denial of service (cpu) in vicar (bsc#983259).
- CVE-2015-8901: MIFF file DoS (endless loop) (bsc#983234).
- CVE-2016-5688: Various invalid memory reads in ImageMagick WPG (bsc#985442).
- CVE-2015-8894: Double free in coders/tga.c:221 (bsc#983523).
- CVE-2015-8896: Double free / integer truncation issue in coders/pict.c:2000 (bsc#983533).
- CVE-2014-9807: Double free in pdb coder. (bsc#983794).
- CVE-2014-9828: Corrupted (too many colors) psd file (bsc#984028).
- CVE-2014-9805: SEGV due to a corrupted pnm file (bsc#983752).
- CVE-2014-9808: SEGV due to corrupted dpc images (bsc#983796).
- CVE-2014-9820: Heap overflow in xpm files (bsc#984150).
- CVE-2014-9839: Theoretical out of bound access in magick/colormap-private.h (bsc#984379).
- CVE-2014-9809: SEGV due to corrupted xwd images. (bsc#983799).
- CVE-2016-5240: SVG converting issue resulting in DoS (endless loop) (bsc#983309).
- CVE-2014-9840: Out of bound access in palm file (bsc#984433).
- CVE-2014-9847: Incorrect handling of 'previous' image in the JNG decoder (bsc#984144).
- CVE-2016-5241: Arithmetic exception (div by 0) in SVG conversion (bsc#983455).
- CVE-2014-9845: Crash due to corrupted dib file (bsc#984394).
- CVE-2014-9844: Out of bound issue in rle file (bsc#984373).
- CVE-2014-9835: Heap overflow in wpf file (bsc#984145).
- CVE-2014-9829: Out of bound access in sun file (bsc#984409).
- CVE-2014-9846: Added checks to prevent overflow in rle file. (bsc#983521).
- CVE-2016-2317: Multiple vulnerabilities when parsing and processing SVG files (bsc#965853).
- CVE-2016-2318: Multiple vulnerabilities when parsing and processing SVG files (bsc#965853).
Patchnames
sdksp4-GraphicsMagick-12644,slestso13-GraphicsMagick-12644
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for GraphicsMagick",
"title": "Title of the patch"
},
{
"category": "description",
"text": "GraphicsMagick was updated to fix 37 security issues.\n\nThese security issues were fixed:\n- CVE-2014-9810: SEGV in dpx file handler (bsc#983803).\n- CVE-2014-9811: Crash in xwd file handler (bsc#984032).\n- CVE-2014-9813: Crash on corrupted viff file (bsc#984035).\n- CVE-2014-9814: NULL pointer dereference in wpg file handling (bsc#984193).\n- CVE-2014-9815: Crash on corrupted wpg file (bsc#984372).\n- CVE-2014-9816: Out of bound access in viff image (bsc#984398).\n- CVE-2014-9817: Heap buffer overflow in pdb file handling (bsc#984400).\n- CVE-2014-9818: Out of bound access on malformed sun file (bsc#984181).\n- CVE-2014-9819: Heap overflow in palm files (bsc#984142).\n- CVE-2014-9830: Handling of corrupted sun file (bsc#984135).\n- CVE-2014-9831: Handling of corrupted wpg file (bsc#984375).\n- CVE-2014-9837: Additional PNM sanity checks (bsc#984166).\n- CVE-2014-9834: Heap overflow in pict file (bsc#984436).\n- CVE-2014-9853: Memory leak in rle file handling (bsc#984408).\n- CVE-2015-8903: Denial of service (cpu) in vicar (bsc#983259).\n- CVE-2015-8901: MIFF file DoS (endless loop) (bsc#983234).\n- CVE-2016-5688: Various invalid memory reads in ImageMagick WPG (bsc#985442).\n- CVE-2015-8894: Double free in coders/tga.c:221 (bsc#983523).\n- CVE-2015-8896: Double free / integer truncation issue in coders/pict.c:2000 (bsc#983533).\n- CVE-2014-9807: Double free in pdb coder. (bsc#983794).\n- CVE-2014-9828: Corrupted (too many colors) psd file (bsc#984028).\n- CVE-2014-9805: SEGV due to a corrupted pnm file (bsc#983752).\n- CVE-2014-9808: SEGV due to corrupted dpc images (bsc#983796).\n- CVE-2014-9820: Heap overflow in xpm files (bsc#984150).\n- CVE-2014-9839: Theoretical out of bound access in magick/colormap-private.h (bsc#984379).\n- CVE-2014-9809: SEGV due to corrupted xwd images. (bsc#983799).\n- CVE-2016-5240: SVG converting issue resulting in DoS (endless loop) (bsc#983309).\n- CVE-2014-9840: Out of bound access in palm file (bsc#984433).\n- CVE-2014-9847: Incorrect handling of \u0027previous\u0027 image in the JNG decoder (bsc#984144).\n- CVE-2016-5241: Arithmetic exception (div by 0) in SVG conversion (bsc#983455).\n- CVE-2014-9845: Crash due to corrupted dib file (bsc#984394).\n- CVE-2014-9844: Out of bound issue in rle file (bsc#984373).\n- CVE-2014-9835: Heap overflow in wpf file (bsc#984145).\n- CVE-2014-9829: Out of bound access in sun file (bsc#984409).\n- CVE-2014-9846: Added checks to prevent overflow in rle file. (bsc#983521).\n- CVE-2016-2317: Multiple vulnerabilities when parsing and processing SVG files (bsc#965853).\n- CVE-2016-2318: Multiple vulnerabilities when parsing and processing SVG files (bsc#965853).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "sdksp4-GraphicsMagick-12644,slestso13-GraphicsMagick-12644",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2016_1783-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2016:1783-1",
"url": "https://www.suse.com/support/update/announcement/2016/suse-su-20161783-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2016:1783-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2016-July/002152.html"
},
{
"category": "self",
"summary": "SUSE Bug 965853",
"url": "https://bugzilla.suse.com/965853"
},
{
"category": "self",
"summary": "SUSE Bug 983234",
"url": "https://bugzilla.suse.com/983234"
},
{
"category": "self",
"summary": "SUSE Bug 983259",
"url": "https://bugzilla.suse.com/983259"
},
{
"category": "self",
"summary": "SUSE Bug 983309",
"url": "https://bugzilla.suse.com/983309"
},
{
"category": "self",
"summary": "SUSE Bug 983455",
"url": "https://bugzilla.suse.com/983455"
},
{
"category": "self",
"summary": "SUSE Bug 983521",
"url": "https://bugzilla.suse.com/983521"
},
{
"category": "self",
"summary": "SUSE Bug 983523",
"url": "https://bugzilla.suse.com/983523"
},
{
"category": "self",
"summary": "SUSE Bug 983533",
"url": "https://bugzilla.suse.com/983533"
},
{
"category": "self",
"summary": "SUSE Bug 983752",
"url": "https://bugzilla.suse.com/983752"
},
{
"category": "self",
"summary": "SUSE Bug 983794",
"url": "https://bugzilla.suse.com/983794"
},
{
"category": "self",
"summary": "SUSE Bug 983796",
"url": "https://bugzilla.suse.com/983796"
},
{
"category": "self",
"summary": "SUSE Bug 983799",
"url": "https://bugzilla.suse.com/983799"
},
{
"category": "self",
"summary": "SUSE Bug 983803",
"url": "https://bugzilla.suse.com/983803"
},
{
"category": "self",
"summary": "SUSE Bug 984028",
"url": "https://bugzilla.suse.com/984028"
},
{
"category": "self",
"summary": "SUSE Bug 984032",
"url": "https://bugzilla.suse.com/984032"
},
{
"category": "self",
"summary": "SUSE Bug 984035",
"url": "https://bugzilla.suse.com/984035"
},
{
"category": "self",
"summary": "SUSE Bug 984135",
"url": "https://bugzilla.suse.com/984135"
},
{
"category": "self",
"summary": "SUSE Bug 984142",
"url": "https://bugzilla.suse.com/984142"
},
{
"category": "self",
"summary": "SUSE Bug 984144",
"url": "https://bugzilla.suse.com/984144"
},
{
"category": "self",
"summary": "SUSE Bug 984145",
"url": "https://bugzilla.suse.com/984145"
},
{
"category": "self",
"summary": "SUSE Bug 984150",
"url": "https://bugzilla.suse.com/984150"
},
{
"category": "self",
"summary": "SUSE Bug 984166",
"url": "https://bugzilla.suse.com/984166"
},
{
"category": "self",
"summary": "SUSE Bug 984181",
"url": "https://bugzilla.suse.com/984181"
},
{
"category": "self",
"summary": "SUSE Bug 984193",
"url": "https://bugzilla.suse.com/984193"
},
{
"category": "self",
"summary": "SUSE Bug 984372",
"url": "https://bugzilla.suse.com/984372"
},
{
"category": "self",
"summary": "SUSE Bug 984373",
"url": "https://bugzilla.suse.com/984373"
},
{
"category": "self",
"summary": "SUSE Bug 984375",
"url": "https://bugzilla.suse.com/984375"
},
{
"category": "self",
"summary": "SUSE Bug 984379",
"url": "https://bugzilla.suse.com/984379"
},
{
"category": "self",
"summary": "SUSE Bug 984394",
"url": "https://bugzilla.suse.com/984394"
},
{
"category": "self",
"summary": "SUSE Bug 984398",
"url": "https://bugzilla.suse.com/984398"
},
{
"category": "self",
"summary": "SUSE Bug 984400",
"url": "https://bugzilla.suse.com/984400"
},
{
"category": "self",
"summary": "SUSE Bug 984408",
"url": "https://bugzilla.suse.com/984408"
},
{
"category": "self",
"summary": "SUSE Bug 984409",
"url": "https://bugzilla.suse.com/984409"
},
{
"category": "self",
"summary": "SUSE Bug 984433",
"url": "https://bugzilla.suse.com/984433"
},
{
"category": "self",
"summary": "SUSE Bug 984436",
"url": "https://bugzilla.suse.com/984436"
},
{
"category": "self",
"summary": "SUSE Bug 985442",
"url": "https://bugzilla.suse.com/985442"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9805 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9805/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9807 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9807/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9808 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9809 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9809/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9810 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9810/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9811 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9813 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9814 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9815 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9816 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9816/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9817 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9818 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9818/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9819 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9820 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9828 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9829 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9830 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9830/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9831 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9831/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9834 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9834/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9835 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9837 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9837/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9839 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9839/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9840 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9840/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9844 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9844/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9845 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9846 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9846/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9847 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9847/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9853 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9853/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8894 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8894/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8896 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8901 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8901/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8903 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8903/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2317 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2317/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2318 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2318/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5240 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5241 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5688 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5688/"
}
],
"title": "Security update for GraphicsMagick",
"tracking": {
"current_release_date": "2016-07-11T10:12:26Z",
"generator": {
"date": "2016-07-11T10:12:26Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2016:1783-1",
"initial_release_date": "2016-07-11T10:12:26Z",
"revision_history": [
{
"date": "2016-07-11T10:12:26Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "GraphicsMagick-1.2.5-4.41.1.i586",
"product": {
"name": "GraphicsMagick-1.2.5-4.41.1.i586",
"product_id": "GraphicsMagick-1.2.5-4.41.1.i586"
}
},
{
"category": "product_version",
"name": "libGraphicsMagick2-1.2.5-4.41.1.i586",
"product": {
"name": "libGraphicsMagick2-1.2.5-4.41.1.i586",
"product_id": "libGraphicsMagick2-1.2.5-4.41.1.i586"
}
},
{
"category": "product_version",
"name": "perl-GraphicsMagick-1.2.5-4.41.1.i586",
"product": {
"name": "perl-GraphicsMagick-1.2.5-4.41.1.i586",
"product_id": "perl-GraphicsMagick-1.2.5-4.41.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "GraphicsMagick-1.2.5-4.41.1.ia64",
"product": {
"name": "GraphicsMagick-1.2.5-4.41.1.ia64",
"product_id": "GraphicsMagick-1.2.5-4.41.1.ia64"
}
},
{
"category": "product_version",
"name": "libGraphicsMagick2-1.2.5-4.41.1.ia64",
"product": {
"name": "libGraphicsMagick2-1.2.5-4.41.1.ia64",
"product_id": "libGraphicsMagick2-1.2.5-4.41.1.ia64"
}
},
{
"category": "product_version",
"name": "perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"product": {
"name": "perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"product_id": "perl-GraphicsMagick-1.2.5-4.41.1.ia64"
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "GraphicsMagick-1.2.5-4.41.1.ppc64",
"product": {
"name": "GraphicsMagick-1.2.5-4.41.1.ppc64",
"product_id": "GraphicsMagick-1.2.5-4.41.1.ppc64"
}
},
{
"category": "product_version",
"name": "libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"product": {
"name": "libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"product_id": "libGraphicsMagick2-1.2.5-4.41.1.ppc64"
}
},
{
"category": "product_version",
"name": "perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"product": {
"name": "perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"product_id": "perl-GraphicsMagick-1.2.5-4.41.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "GraphicsMagick-1.2.5-4.41.1.s390x",
"product": {
"name": "GraphicsMagick-1.2.5-4.41.1.s390x",
"product_id": "GraphicsMagick-1.2.5-4.41.1.s390x"
}
},
{
"category": "product_version",
"name": "libGraphicsMagick2-1.2.5-4.41.1.s390x",
"product": {
"name": "libGraphicsMagick2-1.2.5-4.41.1.s390x",
"product_id": "libGraphicsMagick2-1.2.5-4.41.1.s390x"
}
},
{
"category": "product_version",
"name": "perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"product": {
"name": "perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"product_id": "perl-GraphicsMagick-1.2.5-4.41.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "GraphicsMagick-1.2.5-4.41.1.x86_64",
"product": {
"name": "GraphicsMagick-1.2.5-4.41.1.x86_64",
"product_id": "GraphicsMagick-1.2.5-4.41.1.x86_64"
}
},
{
"category": "product_version",
"name": "libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"product": {
"name": "libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"product_id": "libGraphicsMagick2-1.2.5-4.41.1.x86_64"
}
},
{
"category": "product_version",
"name": "perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"product": {
"name": "perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"product_id": "perl-GraphicsMagick-1.2.5-4.41.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 11 SP4",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_identification_helper": {
"cpe": "cpe:/a:suse:sle-sdk:11:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Studio Onsite 1.3",
"product": {
"name": "SUSE Studio Onsite 1.3",
"product_id": "SUSE Studio Onsite 1.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-studioonsite:1.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "GraphicsMagick-1.2.5-4.41.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586"
},
"product_reference": "GraphicsMagick-1.2.5-4.41.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "GraphicsMagick-1.2.5-4.41.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64"
},
"product_reference": "GraphicsMagick-1.2.5-4.41.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "GraphicsMagick-1.2.5-4.41.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64"
},
"product_reference": "GraphicsMagick-1.2.5-4.41.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "GraphicsMagick-1.2.5-4.41.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x"
},
"product_reference": "GraphicsMagick-1.2.5-4.41.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "GraphicsMagick-1.2.5-4.41.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64"
},
"product_reference": "GraphicsMagick-1.2.5-4.41.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libGraphicsMagick2-1.2.5-4.41.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586"
},
"product_reference": "libGraphicsMagick2-1.2.5-4.41.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libGraphicsMagick2-1.2.5-4.41.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64"
},
"product_reference": "libGraphicsMagick2-1.2.5-4.41.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libGraphicsMagick2-1.2.5-4.41.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64"
},
"product_reference": "libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libGraphicsMagick2-1.2.5-4.41.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x"
},
"product_reference": "libGraphicsMagick2-1.2.5-4.41.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libGraphicsMagick2-1.2.5-4.41.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
},
"product_reference": "libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-GraphicsMagick-1.2.5-4.41.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586"
},
"product_reference": "perl-GraphicsMagick-1.2.5-4.41.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-GraphicsMagick-1.2.5-4.41.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64"
},
"product_reference": "perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-GraphicsMagick-1.2.5-4.41.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64"
},
"product_reference": "perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-GraphicsMagick-1.2.5-4.41.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x"
},
"product_reference": "perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-GraphicsMagick-1.2.5-4.41.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64"
},
"product_reference": "perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "GraphicsMagick-1.2.5-4.41.1.x86_64 as component of SUSE Studio Onsite 1.3",
"product_id": "SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64"
},
"product_reference": "GraphicsMagick-1.2.5-4.41.1.x86_64",
"relates_to_product_reference": "SUSE Studio Onsite 1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libGraphicsMagick2-1.2.5-4.41.1.x86_64 as component of SUSE Studio Onsite 1.3",
"product_id": "SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
},
"product_reference": "libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"relates_to_product_reference": "SUSE Studio Onsite 1.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-9805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9805"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted pnm file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9805",
"url": "https://www.suse.com/security/cve/CVE-2014-9805"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9805",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983752 for CVE-2014-9805",
"url": "https://bugzilla.suse.com/983752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9805"
},
{
"cve": "CVE-2014-9807",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9807"
}
],
"notes": [
{
"category": "general",
"text": "The pdb coder in ImageMagick allows remote attackers to cause a denial of service (double free) via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9807",
"url": "https://www.suse.com/security/cve/CVE-2014-9807"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9807",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983794 for CVE-2014-9807",
"url": "https://bugzilla.suse.com/983794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9807"
},
{
"cve": "CVE-2014-9808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9808"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted dpc image.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9808",
"url": "https://www.suse.com/security/cve/CVE-2014-9808"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9808",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983796 for CVE-2014-9808",
"url": "https://bugzilla.suse.com/983796"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9808"
},
{
"cve": "CVE-2014-9809",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9809"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted xwd image.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9809",
"url": "https://www.suse.com/security/cve/CVE-2014-9809"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9809",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983799 for CVE-2014-9809",
"url": "https://bugzilla.suse.com/983799"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9809"
},
{
"cve": "CVE-2014-9810",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9810"
}
],
"notes": [
{
"category": "general",
"text": "The dpx file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed dpx file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9810",
"url": "https://www.suse.com/security/cve/CVE-2014-9810"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9810",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983803 for CVE-2014-9810",
"url": "https://bugzilla.suse.com/983803"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9810"
},
{
"cve": "CVE-2014-9811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9811"
}
],
"notes": [
{
"category": "general",
"text": "The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9811",
"url": "https://www.suse.com/security/cve/CVE-2014-9811"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9811",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984032 for CVE-2014-9811",
"url": "https://bugzilla.suse.com/984032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9811"
},
{
"cve": "CVE-2014-9813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9813"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted viff file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9813",
"url": "https://www.suse.com/security/cve/CVE-2014-9813"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9813",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984035 for CVE-2014-9813",
"url": "https://bugzilla.suse.com/984035"
},
{
"category": "external",
"summary": "SUSE Bug 984398 for CVE-2014-9813",
"url": "https://bugzilla.suse.com/984398"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9813"
},
{
"cve": "CVE-2014-9814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9814"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted wpg file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9814",
"url": "https://www.suse.com/security/cve/CVE-2014-9814"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9814",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984193 for CVE-2014-9814",
"url": "https://bugzilla.suse.com/984193"
},
{
"category": "external",
"summary": "SUSE Bug 984372 for CVE-2014-9814",
"url": "https://bugzilla.suse.com/984372"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9814"
},
{
"cve": "CVE-2014-9815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9815"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted wpg file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9815",
"url": "https://www.suse.com/security/cve/CVE-2014-9815"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9815",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984372 for CVE-2014-9815",
"url": "https://bugzilla.suse.com/984372"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9815"
},
{
"cve": "CVE-2014-9816",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9816"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted viff file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9816",
"url": "https://www.suse.com/security/cve/CVE-2014-9816"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9816",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984035 for CVE-2014-9816",
"url": "https://bugzilla.suse.com/984035"
},
{
"category": "external",
"summary": "SUSE Bug 984398 for CVE-2014-9816",
"url": "https://bugzilla.suse.com/984398"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9816"
},
{
"cve": "CVE-2014-9817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9817"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pdb file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9817",
"url": "https://www.suse.com/security/cve/CVE-2014-9817"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9817",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984400 for CVE-2014-9817",
"url": "https://bugzilla.suse.com/984400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9817"
},
{
"cve": "CVE-2014-9818",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9818"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a malformed sun file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9818",
"url": "https://www.suse.com/security/cve/CVE-2014-9818"
},
{
"category": "external",
"summary": "SUSE Bug 1000690 for CVE-2014-9818",
"url": "https://bugzilla.suse.com/1000690"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9818",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984181 for CVE-2014-9818",
"url": "https://bugzilla.suse.com/984181"
},
{
"category": "external",
"summary": "SUSE Bug 984186 for CVE-2014-9818",
"url": "https://bugzilla.suse.com/984186"
},
{
"category": "external",
"summary": "SUSE Bug 984409 for CVE-2014-9818",
"url": "https://bugzilla.suse.com/984409"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9818"
},
{
"cve": "CVE-2014-9819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9819"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerability than CVE-2014-9823.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9819",
"url": "https://www.suse.com/security/cve/CVE-2014-9819"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9819",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984142 for CVE-2014-9819",
"url": "https://bugzilla.suse.com/984142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9819"
},
{
"cve": "CVE-2014-9820",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9820"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pnm file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9820",
"url": "https://www.suse.com/security/cve/CVE-2014-9820"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9820",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984150 for CVE-2014-9820",
"url": "https://bugzilla.suse.com/984150"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9820"
},
{
"cve": "CVE-2014-9828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9828"
}
],
"notes": [
{
"category": "general",
"text": "coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9828",
"url": "https://www.suse.com/security/cve/CVE-2014-9828"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9828",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984028 for CVE-2014-9828",
"url": "https://bugzilla.suse.com/984028"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9828"
},
{
"cve": "CVE-2014-9829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9829"
}
],
"notes": [
{
"category": "general",
"text": "coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted sun file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9829",
"url": "https://www.suse.com/security/cve/CVE-2014-9829"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9829",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984409 for CVE-2014-9829",
"url": "https://bugzilla.suse.com/984409"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9829"
},
{
"cve": "CVE-2014-9830",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9830"
}
],
"notes": [
{
"category": "general",
"text": "coders/sun.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted sun file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9830",
"url": "https://www.suse.com/security/cve/CVE-2014-9830"
},
{
"category": "external",
"summary": "SUSE Bug 1000690 for CVE-2014-9830",
"url": "https://bugzilla.suse.com/1000690"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9830",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984135 for CVE-2014-9830",
"url": "https://bugzilla.suse.com/984135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9830"
},
{
"cve": "CVE-2014-9831",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9831"
}
],
"notes": [
{
"category": "general",
"text": "coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted wpg file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9831",
"url": "https://www.suse.com/security/cve/CVE-2014-9831"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9831",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984375 for CVE-2014-9831",
"url": "https://bugzilla.suse.com/984375"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9831"
},
{
"cve": "CVE-2014-9834",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9834"
}
],
"notes": [
{
"category": "general",
"text": "Heap overflow in ImageMagick 6.8.9-9 via a crafted pict file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9834",
"url": "https://www.suse.com/security/cve/CVE-2014-9834"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9834",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984436 for CVE-2014-9834",
"url": "https://bugzilla.suse.com/984436"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9834"
},
{
"cve": "CVE-2014-9835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9835"
}
],
"notes": [
{
"category": "general",
"text": "Heap overflow in ImageMagick 6.8.9-9 via a crafted wpf file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9835",
"url": "https://www.suse.com/security/cve/CVE-2014-9835"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9835",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984145 for CVE-2014-9835",
"url": "https://bugzilla.suse.com/984145"
},
{
"category": "external",
"summary": "SUSE Bug 984375 for CVE-2014-9835",
"url": "https://bugzilla.suse.com/984375"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9835"
},
{
"cve": "CVE-2014-9837",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9837"
}
],
"notes": [
{
"category": "general",
"text": "coders/pnm.c in ImageMagick 6.9.0-1 Beta and earlier allows remote attackers to cause a denial of service (crash) via a crafted png file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9837",
"url": "https://www.suse.com/security/cve/CVE-2014-9837"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9837",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984166 for CVE-2014-9837",
"url": "https://bugzilla.suse.com/984166"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9837"
},
{
"cve": "CVE-2014-9839",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9839"
}
],
"notes": [
{
"category": "general",
"text": "magick/colormap-private.h in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9839",
"url": "https://www.suse.com/security/cve/CVE-2014-9839"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9839",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984379 for CVE-2014-9839",
"url": "https://bugzilla.suse.com/984379"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9839"
},
{
"cve": "CVE-2014-9840",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9840"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted palm file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9840",
"url": "https://www.suse.com/security/cve/CVE-2014-9840"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9840",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984433 for CVE-2014-9840",
"url": "https://bugzilla.suse.com/984433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9840"
},
{
"cve": "CVE-2014-9844",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9844"
}
],
"notes": [
{
"category": "general",
"text": "The ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9844",
"url": "https://www.suse.com/security/cve/CVE-2014-9844"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9844",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984373 for CVE-2014-9844",
"url": "https://bugzilla.suse.com/984373"
},
{
"category": "external",
"summary": "SUSE Bug 984408 for CVE-2014-9844",
"url": "https://bugzilla.suse.com/984408"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9844"
},
{
"cve": "CVE-2014-9845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9845"
}
],
"notes": [
{
"category": "general",
"text": "The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service (crash) via a corrupted dib file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9845",
"url": "https://www.suse.com/security/cve/CVE-2014-9845"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9845",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984394 for CVE-2014-9845",
"url": "https://bugzilla.suse.com/984394"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9845"
},
{
"cve": "CVE-2014-9846",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9846"
}
],
"notes": [
{
"category": "general",
"text": "Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9846",
"url": "https://www.suse.com/security/cve/CVE-2014-9846"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9846",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983521 for CVE-2014-9846",
"url": "https://bugzilla.suse.com/983521"
},
{
"category": "external",
"summary": "SUSE Bug 984408 for CVE-2014-9846",
"url": "https://bugzilla.suse.com/984408"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9846"
},
{
"cve": "CVE-2014-9847",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9847"
}
],
"notes": [
{
"category": "general",
"text": "The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9847",
"url": "https://www.suse.com/security/cve/CVE-2014-9847"
},
{
"category": "external",
"summary": "SUSE Bug 1040304 for CVE-2014-9847",
"url": "https://bugzilla.suse.com/1040304"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9847",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984144 for CVE-2014-9847",
"url": "https://bugzilla.suse.com/984144"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9847"
},
{
"cve": "CVE-2014-9853",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9853"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9853",
"url": "https://www.suse.com/security/cve/CVE-2014-9853"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9853",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984408 for CVE-2014-9853",
"url": "https://bugzilla.suse.com/984408"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2014-9853"
},
{
"cve": "CVE-2015-8894",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8894"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in coders/tga.c in ImageMagick 7.0.0 and later allows remote attackers to cause a denial of service (application crash) via a crafted tga file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8894",
"url": "https://www.suse.com/security/cve/CVE-2015-8894"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2015-8894",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983523 for CVE-2015-8894",
"url": "https://bugzilla.suse.com/983523"
},
{
"category": "external",
"summary": "SUSE Bug 983533 for CVE-2015-8894",
"url": "https://bugzilla.suse.com/983533"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2015-8894"
},
{
"cve": "CVE-2015-8896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8896"
}
],
"notes": [
{
"category": "general",
"text": "Integer truncation issue in coders/pict.c in ImageMagick before 7.0.5-0 allows remote attackers to cause a denial of service (application crash) via a crafted .pict file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8896",
"url": "https://www.suse.com/security/cve/CVE-2015-8896"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2015-8896",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983533 for CVE-2015-8896",
"url": "https://bugzilla.suse.com/983533"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2015-8896"
},
{
"cve": "CVE-2015-8901",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8901"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted MIFF file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8901",
"url": "https://www.suse.com/security/cve/CVE-2015-8901"
},
{
"category": "external",
"summary": "SUSE Bug 983234 for CVE-2015-8901",
"url": "https://bugzilla.suse.com/983234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2015-8901"
},
{
"cve": "CVE-2015-8903",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8903"
}
],
"notes": [
{
"category": "general",
"text": "The ReadVICARImage function in coders/vicar.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted VICAR file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8903",
"url": "https://www.suse.com/security/cve/CVE-2015-8903"
},
{
"category": "external",
"summary": "SUSE Bug 983259 for CVE-2015-8903",
"url": "https://bugzilla.suse.com/983259"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "important"
}
],
"title": "CVE-2015-8903"
},
{
"cve": "CVE-2016-2317",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2317"
}
],
"notes": [
{
"category": "general",
"text": "Multiple buffer overflows in GraphicsMagick 1.3.23 allow remote attackers to cause a denial of service (crash) via a crafted SVG file, related to the (1) TracePoint function in magick/render.c, (2) GetToken function in magick/utility.c, and (3) GetTransformTokens function in coders/svg.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2317",
"url": "https://www.suse.com/security/cve/CVE-2016-2317"
},
{
"category": "external",
"summary": "SUSE Bug 965853 for CVE-2016-2317",
"url": "https://bugzilla.suse.com/965853"
},
{
"category": "external",
"summary": "SUSE Bug 999673 for CVE-2016-2317",
"url": "https://bugzilla.suse.com/999673"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2016-2317"
},
{
"cve": "CVE-2016-2318",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2318"
}
],
"notes": [
{
"category": "general",
"text": "GraphicsMagick 1.3.23 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted SVG file, related to the (1) DrawImage function in magick/render.c, (2) SVGStartElement function in coders/svg.c, and (3) TraceArcPath function in magick/render.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2318",
"url": "https://www.suse.com/security/cve/CVE-2016-2318"
},
{
"category": "external",
"summary": "SUSE Bug 1047356 for CVE-2016-2318",
"url": "https://bugzilla.suse.com/1047356"
},
{
"category": "external",
"summary": "SUSE Bug 965853 for CVE-2016-2318",
"url": "https://bugzilla.suse.com/965853"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2016-2318"
},
{
"cve": "CVE-2016-5240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5240"
}
],
"notes": [
{
"category": "general",
"text": "The DrawDashPolygon function in magick/render.c in GraphicsMagick before 1.3.24 and the SVG renderer in ImageMagick allow remote attackers to cause a denial of service (infinite loop) by converting a circularly defined SVG file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5240",
"url": "https://www.suse.com/security/cve/CVE-2016-5240"
},
{
"category": "external",
"summary": "SUSE Bug 983309 for CVE-2016-5240",
"url": "https://bugzilla.suse.com/983309"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2016-5240"
},
{
"cve": "CVE-2016-5241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5241"
}
],
"notes": [
{
"category": "general",
"text": "magick/render.c in GraphicsMagick before 1.3.24 allows remote attackers to cause a denial of service (arithmetic exception and application crash) via a crafted svg file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5241",
"url": "https://www.suse.com/security/cve/CVE-2016-5241"
},
{
"category": "external",
"summary": "SUSE Bug 983455 for CVE-2016-5241",
"url": "https://bugzilla.suse.com/983455"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2016-5241"
},
{
"cve": "CVE-2016-5688",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5688"
}
],
"notes": [
{
"category": "general",
"text": "The WPG parser in ImageMagick before 6.9.4-4 and 7.x before 7.0.1-5, when a memory limit is set, allows remote attackers to have unspecified impact via vectors related to the SetImageExtent return-value check, which trigger (1) a heap-based buffer overflow in the SetPixelIndex function or an invalid write operation in the (2) ScaleCharToQuantum or (3) SetPixelIndex functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5688",
"url": "https://www.suse.com/security/cve/CVE-2016-5688"
},
{
"category": "external",
"summary": "SUSE Bug 985442 for CVE-2016-5688",
"url": "https://bugzilla.suse.com/985442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-4.41.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-4.41.1.x86_64",
"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-4.41.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:26Z",
"details": "moderate"
}
],
"title": "CVE-2016-5688"
}
]
}
suse-su-2016:1782-1
Vulnerability from csaf_suse
Published
2016-07-11 10:12
Modified
2016-07-11 10:12
Summary
Security update for ImageMagick
Notes
Title of the patch
Security update for ImageMagick
Description of the patch
ImageMagick was updated to fix 55 security issues.
These security issues were fixed:
- CVE-2014-9810: SEGV in dpx file handler (bsc#983803).
- CVE-2014-9811: Crash in xwd file handler (bsc#984032).
- CVE-2014-9812: NULL pointer dereference in ps file handling (bsc#984137).
- CVE-2014-9813: Crash on corrupted viff file (bsc#984035).
- CVE-2014-9814: NULL pointer dereference in wpg file handling (bsc#984193).
- CVE-2014-9815: Crash on corrupted wpg file (bsc#984372).
- CVE-2014-9816: Out of bound access in viff image (bsc#984398).
- CVE-2014-9817: Heap buffer overflow in pdb file handling (bsc#984400).
- CVE-2014-9818: Out of bound access on malformed sun file (bsc#984181).
- CVE-2014-9819: Heap overflow in palm files (bsc#984142).
- CVE-2014-9830: Handling of corrupted sun file (bsc#984135).
- CVE-2014-9831: Handling of corrupted wpg file (bsc#984375).
- CVE-2014-9836: Crash in xpm file handling (bsc#984023).
- CVE-2014-9851: Crash when parsing resource block (bsc#984160).
- CVE-2016-5689: NULL ptr dereference in dcm coder (bsc#985460).
- CVE-2014-9853: Memory leak in rle file handling (bsc#984408).
- CVE-2015-8902: PDB file DoS (CPU consumption) (bsc#983253).
- CVE-2015-8903: Denial of service (cpu) in vicar (bsc#983259).
- CVE-2015-8901: MIFF file DoS (endless loop) (bsc#983234).
- CVE-2014-9834: Heap overflow in pict file (bsc#984436).
- CVE-2014-9806: Prevent file descriptr leak due to corrupted file (bsc#983774).
- CVE-2014-9838: Out of memory crash in magick/cache.c (bsc#984370).
- CVE-2014-9854: Filling memory during identification of TIFF image (bsc#984184).
- CVE-2015-8898: Prevent null pointer access in magick/constitute.c (bsc#983746).
- CVE-2015-8894: Double free in coders/tga.c:221 (bsc#983523).
- CVE-2015-8896: Double free / integer truncation issue in coders/pict.c:2000 (bsc#983533).
- CVE-2015-8897: Out of bounds error in SpliceImage (bsc#983739).
- CVE-2016-5690: Bad foor loop in DCM coder (bsc#985451).
- CVE-2016-5691: Checks for pixel.red/green/blue in dcm coder (bsc#985456).
- CVE-2014-9805: SEGV due to a corrupted pnm file. (bsc#983752).
- CVE-2014-9808: SEGV due to corrupted dpc images. (bsc#983796).
- CVE-2014-9820: heap overflow in xpm files (bsc#984150).
- CVE-2014-9823: heap overflow in palm file (bsc#984401).
- CVE-2014-9822: heap overflow in quantum file (bsc#984187).
- CVE-2014-9839: Theoretical out of bound access in magick/colormap-private.h (bsc#984379).
- CVE-2014-9824: Heap overflow in psd file (bsc#984185).
- CVE-2014-9809: Fix a SEGV due to corrupted xwd images. (bsc#983799).
- CVE-2014-9826: Incorrect error handling in sun files (bsc#984186).
- CVE-2014-9842: Memory leak in psd handling (bsc#984374).
- CVE-2016-5687: Out of bounds read in DDS coder (bsc#985448).
- CVE-2014-9840: Out of bound access in palm file (bsc#984433).
- CVE-2014-9847: Incorrect handling of 'previous' image in the JNG decoder (bsc#984144).
- CVE-2014-9846: Added checks to prevent overflow in rle file. (bsc#983521).
- CVE-2014-9845: Crash due to corrupted dib file (bsc#984394).
- CVE-2014-9844: Out of bound issue in rle file (bsc#984373).
- CVE-2014-9849: Crash in png coder (bsc#984018).
- CVE-2016-5688: Various invalid memory reads in ImageMagick WPG (bsc#985442).
- CVE-2014-9807: Fix a double free in pdb coder. (bsc#983794).
- CVE-2014-9829: Out of bound access in sun file (bsc#984409).
- CVE-2016-4564: The DrawImage function in MagickCore/draw.c in ImageMagick made an incorrect function call in attempting to locate the next token, which allowed remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file (bsc#983308).
- CVE-2016-4563: The TraceStrokePolygon function in MagickCore/draw.c in ImageMagick mishandled the relationship between the BezierQuantum value and certain strokes data, which allowed remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file (bsc#983305).
- CVE-2016-4562: The DrawDashPolygon function in MagickCore/draw.c in ImageMagick mishandled calculations of certain vertices integer data, which allowed remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file (bsc#983292).
- CVE-2014-9837: Additional PNM sanity checks (bsc#984166).
- CVE-2014-9835: Heap overflow in wpf file (bsc#984145).
- CVE-2014-9828: Corrupted (too many colors) psd file (bsc#984028).
- CVE-2016-5841: Integer overflow could have read to RCE (bnc#986609).
- CVE-2016-5842: Out-of-bounds read in MagickCore/property.c:1396 could have lead to memory leak (bnc#986608).
Patchnames
sdksp4-ImageMagick-12643,slessp4-ImageMagick-12643
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for ImageMagick",
"title": "Title of the patch"
},
{
"category": "description",
"text": "ImageMagick was updated to fix 55 security issues.\n\nThese security issues were fixed:\n- CVE-2014-9810: SEGV in dpx file handler (bsc#983803).\n- CVE-2014-9811: Crash in xwd file handler (bsc#984032).\n- CVE-2014-9812: NULL pointer dereference in ps file handling (bsc#984137).\n- CVE-2014-9813: Crash on corrupted viff file (bsc#984035).\n- CVE-2014-9814: NULL pointer dereference in wpg file handling (bsc#984193).\n- CVE-2014-9815: Crash on corrupted wpg file (bsc#984372).\n- CVE-2014-9816: Out of bound access in viff image (bsc#984398).\n- CVE-2014-9817: Heap buffer overflow in pdb file handling (bsc#984400).\n- CVE-2014-9818: Out of bound access on malformed sun file (bsc#984181).\n- CVE-2014-9819: Heap overflow in palm files (bsc#984142).\n- CVE-2014-9830: Handling of corrupted sun file (bsc#984135).\n- CVE-2014-9831: Handling of corrupted wpg file (bsc#984375).\n- CVE-2014-9836: Crash in xpm file handling (bsc#984023).\n- CVE-2014-9851: Crash when parsing resource block (bsc#984160).\n- CVE-2016-5689: NULL ptr dereference in dcm coder (bsc#985460).\n- CVE-2014-9853: Memory leak in rle file handling (bsc#984408).\n- CVE-2015-8902: PDB file DoS (CPU consumption) (bsc#983253).\n- CVE-2015-8903: Denial of service (cpu) in vicar (bsc#983259).\n- CVE-2015-8901: MIFF file DoS (endless loop) (bsc#983234).\n- CVE-2014-9834: Heap overflow in pict file (bsc#984436).\n- CVE-2014-9806: Prevent file descriptr leak due to corrupted file (bsc#983774).\n- CVE-2014-9838: Out of memory crash in magick/cache.c (bsc#984370).\n- CVE-2014-9854: Filling memory during identification of TIFF image (bsc#984184).\n- CVE-2015-8898: Prevent null pointer access in magick/constitute.c (bsc#983746).\n- CVE-2015-8894: Double free in coders/tga.c:221 (bsc#983523).\n- CVE-2015-8896: Double free / integer truncation issue in coders/pict.c:2000 (bsc#983533).\n- CVE-2015-8897: Out of bounds error in SpliceImage (bsc#983739).\n- CVE-2016-5690: Bad foor loop in DCM coder (bsc#985451).\n- CVE-2016-5691: Checks for pixel.red/green/blue in dcm coder (bsc#985456).\n- CVE-2014-9805: SEGV due to a corrupted pnm file. (bsc#983752).\n- CVE-2014-9808: SEGV due to corrupted dpc images. (bsc#983796).\n- CVE-2014-9820: heap overflow in xpm files (bsc#984150).\n- CVE-2014-9823: heap overflow in palm file (bsc#984401).\n- CVE-2014-9822: heap overflow in quantum file (bsc#984187).\n- CVE-2014-9839: Theoretical out of bound access in magick/colormap-private.h (bsc#984379).\n- CVE-2014-9824: Heap overflow in psd file (bsc#984185).\n- CVE-2014-9809: Fix a SEGV due to corrupted xwd images. (bsc#983799).\n- CVE-2014-9826: Incorrect error handling in sun files (bsc#984186).\n- CVE-2014-9842: Memory leak in psd handling (bsc#984374).\n- CVE-2016-5687: Out of bounds read in DDS coder (bsc#985448).\n- CVE-2014-9840: Out of bound access in palm file (bsc#984433).\n- CVE-2014-9847: Incorrect handling of \u0027previous\u0027 image in the JNG decoder (bsc#984144).\n- CVE-2014-9846: Added checks to prevent overflow in rle file. (bsc#983521).\n- CVE-2014-9845: Crash due to corrupted dib file (bsc#984394).\n- CVE-2014-9844: Out of bound issue in rle file (bsc#984373).\n- CVE-2014-9849: Crash in png coder (bsc#984018).\n- CVE-2016-5688: Various invalid memory reads in ImageMagick WPG (bsc#985442).\n- CVE-2014-9807: Fix a double free in pdb coder. (bsc#983794).\n- CVE-2014-9829: Out of bound access in sun file (bsc#984409).\n- CVE-2016-4564: The DrawImage function in MagickCore/draw.c in ImageMagick made an incorrect function call in attempting to locate the next token, which allowed remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file (bsc#983308).\n- CVE-2016-4563: The TraceStrokePolygon function in MagickCore/draw.c in ImageMagick mishandled the relationship between the BezierQuantum value and certain strokes data, which allowed remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file (bsc#983305).\n- CVE-2016-4562: The DrawDashPolygon function in MagickCore/draw.c in ImageMagick mishandled calculations of certain vertices integer data, which allowed remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file (bsc#983292).\n- CVE-2014-9837: Additional PNM sanity checks (bsc#984166).\n- CVE-2014-9835: Heap overflow in wpf file (bsc#984145).\n- CVE-2014-9828: Corrupted (too many colors) psd file (bsc#984028).\n- CVE-2016-5841: Integer overflow could have read to RCE (bnc#986609).\n- CVE-2016-5842: Out-of-bounds read in MagickCore/property.c:1396 could have lead to memory leak (bnc#986608).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "sdksp4-ImageMagick-12643,slessp4-ImageMagick-12643",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2016_1782-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2016:1782-1",
"url": "https://www.suse.com/support/update/announcement/2016/suse-su-20161782-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2016:1782-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2016-July/002151.html"
},
{
"category": "self",
"summary": "SUSE Bug 983234",
"url": "https://bugzilla.suse.com/983234"
},
{
"category": "self",
"summary": "SUSE Bug 983253",
"url": "https://bugzilla.suse.com/983253"
},
{
"category": "self",
"summary": "SUSE Bug 983259",
"url": "https://bugzilla.suse.com/983259"
},
{
"category": "self",
"summary": "SUSE Bug 983292",
"url": "https://bugzilla.suse.com/983292"
},
{
"category": "self",
"summary": "SUSE Bug 983305",
"url": "https://bugzilla.suse.com/983305"
},
{
"category": "self",
"summary": "SUSE Bug 983308",
"url": "https://bugzilla.suse.com/983308"
},
{
"category": "self",
"summary": "SUSE Bug 983521",
"url": "https://bugzilla.suse.com/983521"
},
{
"category": "self",
"summary": "SUSE Bug 983523",
"url": "https://bugzilla.suse.com/983523"
},
{
"category": "self",
"summary": "SUSE Bug 983533",
"url": "https://bugzilla.suse.com/983533"
},
{
"category": "self",
"summary": "SUSE Bug 983739",
"url": "https://bugzilla.suse.com/983739"
},
{
"category": "self",
"summary": "SUSE Bug 983746",
"url": "https://bugzilla.suse.com/983746"
},
{
"category": "self",
"summary": "SUSE Bug 983752",
"url": "https://bugzilla.suse.com/983752"
},
{
"category": "self",
"summary": "SUSE Bug 983774",
"url": "https://bugzilla.suse.com/983774"
},
{
"category": "self",
"summary": "SUSE Bug 983794",
"url": "https://bugzilla.suse.com/983794"
},
{
"category": "self",
"summary": "SUSE Bug 983796",
"url": "https://bugzilla.suse.com/983796"
},
{
"category": "self",
"summary": "SUSE Bug 983799",
"url": "https://bugzilla.suse.com/983799"
},
{
"category": "self",
"summary": "SUSE Bug 983803",
"url": "https://bugzilla.suse.com/983803"
},
{
"category": "self",
"summary": "SUSE Bug 984018",
"url": "https://bugzilla.suse.com/984018"
},
{
"category": "self",
"summary": "SUSE Bug 984023",
"url": "https://bugzilla.suse.com/984023"
},
{
"category": "self",
"summary": "SUSE Bug 984028",
"url": "https://bugzilla.suse.com/984028"
},
{
"category": "self",
"summary": "SUSE Bug 984032",
"url": "https://bugzilla.suse.com/984032"
},
{
"category": "self",
"summary": "SUSE Bug 984035",
"url": "https://bugzilla.suse.com/984035"
},
{
"category": "self",
"summary": "SUSE Bug 984135",
"url": "https://bugzilla.suse.com/984135"
},
{
"category": "self",
"summary": "SUSE Bug 984137",
"url": "https://bugzilla.suse.com/984137"
},
{
"category": "self",
"summary": "SUSE Bug 984142",
"url": "https://bugzilla.suse.com/984142"
},
{
"category": "self",
"summary": "SUSE Bug 984144",
"url": "https://bugzilla.suse.com/984144"
},
{
"category": "self",
"summary": "SUSE Bug 984145",
"url": "https://bugzilla.suse.com/984145"
},
{
"category": "self",
"summary": "SUSE Bug 984150",
"url": "https://bugzilla.suse.com/984150"
},
{
"category": "self",
"summary": "SUSE Bug 984160",
"url": "https://bugzilla.suse.com/984160"
},
{
"category": "self",
"summary": "SUSE Bug 984166",
"url": "https://bugzilla.suse.com/984166"
},
{
"category": "self",
"summary": "SUSE Bug 984181",
"url": "https://bugzilla.suse.com/984181"
},
{
"category": "self",
"summary": "SUSE Bug 984184",
"url": "https://bugzilla.suse.com/984184"
},
{
"category": "self",
"summary": "SUSE Bug 984185",
"url": "https://bugzilla.suse.com/984185"
},
{
"category": "self",
"summary": "SUSE Bug 984186",
"url": "https://bugzilla.suse.com/984186"
},
{
"category": "self",
"summary": "SUSE Bug 984187",
"url": "https://bugzilla.suse.com/984187"
},
{
"category": "self",
"summary": "SUSE Bug 984193",
"url": "https://bugzilla.suse.com/984193"
},
{
"category": "self",
"summary": "SUSE Bug 984370",
"url": "https://bugzilla.suse.com/984370"
},
{
"category": "self",
"summary": "SUSE Bug 984372",
"url": "https://bugzilla.suse.com/984372"
},
{
"category": "self",
"summary": "SUSE Bug 984373",
"url": "https://bugzilla.suse.com/984373"
},
{
"category": "self",
"summary": "SUSE Bug 984374",
"url": "https://bugzilla.suse.com/984374"
},
{
"category": "self",
"summary": "SUSE Bug 984375",
"url": "https://bugzilla.suse.com/984375"
},
{
"category": "self",
"summary": "SUSE Bug 984379",
"url": "https://bugzilla.suse.com/984379"
},
{
"category": "self",
"summary": "SUSE Bug 984394",
"url": "https://bugzilla.suse.com/984394"
},
{
"category": "self",
"summary": "SUSE Bug 984398",
"url": "https://bugzilla.suse.com/984398"
},
{
"category": "self",
"summary": "SUSE Bug 984400",
"url": "https://bugzilla.suse.com/984400"
},
{
"category": "self",
"summary": "SUSE Bug 984401",
"url": "https://bugzilla.suse.com/984401"
},
{
"category": "self",
"summary": "SUSE Bug 984408",
"url": "https://bugzilla.suse.com/984408"
},
{
"category": "self",
"summary": "SUSE Bug 984409",
"url": "https://bugzilla.suse.com/984409"
},
{
"category": "self",
"summary": "SUSE Bug 984433",
"url": "https://bugzilla.suse.com/984433"
},
{
"category": "self",
"summary": "SUSE Bug 984436",
"url": "https://bugzilla.suse.com/984436"
},
{
"category": "self",
"summary": "SUSE Bug 985442",
"url": "https://bugzilla.suse.com/985442"
},
{
"category": "self",
"summary": "SUSE Bug 985448",
"url": "https://bugzilla.suse.com/985448"
},
{
"category": "self",
"summary": "SUSE Bug 985451",
"url": "https://bugzilla.suse.com/985451"
},
{
"category": "self",
"summary": "SUSE Bug 985456",
"url": "https://bugzilla.suse.com/985456"
},
{
"category": "self",
"summary": "SUSE Bug 985460",
"url": "https://bugzilla.suse.com/985460"
},
{
"category": "self",
"summary": "SUSE Bug 986608",
"url": "https://bugzilla.suse.com/986608"
},
{
"category": "self",
"summary": "SUSE Bug 986609",
"url": "https://bugzilla.suse.com/986609"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9805 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9805/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9806 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9806/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9807 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9807/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9808 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9808/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9809 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9809/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9810 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9810/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9811 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9811/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9812 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9812/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9813 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9813/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9814 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9815 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9815/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9816 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9816/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9817 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9818 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9818/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9819 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9820 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9820/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9822 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9822/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9823 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9823/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9824 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9824/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9826 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9826/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9828 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9829 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9830 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9830/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9831 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9831/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9834 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9834/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9835 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9836 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9837 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9837/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9838 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9838/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9839 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9839/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9840 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9840/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9842 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9842/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9844 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9844/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9845 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9846 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9846/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9847 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9847/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9849 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9849/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9851 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9851/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9853 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9853/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-9854 page",
"url": "https://www.suse.com/security/cve/CVE-2014-9854/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8894 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8894/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8896 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8896/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8897 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8897/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8898 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8901 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8901/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8902 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8902/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8903 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8903/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-4562 page",
"url": "https://www.suse.com/security/cve/CVE-2016-4562/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-4563 page",
"url": "https://www.suse.com/security/cve/CVE-2016-4563/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-4564 page",
"url": "https://www.suse.com/security/cve/CVE-2016-4564/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5687 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5687/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5688 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5688/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5689 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5689/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5690 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5690/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5691 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5691/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5841 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5841/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5842 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5842/"
}
],
"title": "Security update for ImageMagick",
"tracking": {
"current_release_date": "2016-07-11T10:12:01Z",
"generator": {
"date": "2016-07-11T10:12:01Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2016:1782-1",
"initial_release_date": "2016-07-11T10:12:01Z",
"revision_history": [
{
"date": "2016-07-11T10:12:01Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-6.4.3.6-7.45.1.i586",
"product": {
"name": "ImageMagick-6.4.3.6-7.45.1.i586",
"product_id": "ImageMagick-6.4.3.6-7.45.1.i586"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-6.4.3.6-7.45.1.i586",
"product": {
"name": "ImageMagick-devel-6.4.3.6-7.45.1.i586",
"product_id": "ImageMagick-devel-6.4.3.6-7.45.1.i586"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-6.4.3.6-7.45.1.i586",
"product": {
"name": "libMagick++-devel-6.4.3.6-7.45.1.i586",
"product_id": "libMagick++-devel-6.4.3.6-7.45.1.i586"
}
},
{
"category": "product_version",
"name": "libMagick++1-6.4.3.6-7.45.1.i586",
"product": {
"name": "libMagick++1-6.4.3.6-7.45.1.i586",
"product_id": "libMagick++1-6.4.3.6-7.45.1.i586"
}
},
{
"category": "product_version",
"name": "libMagickWand1-6.4.3.6-7.45.1.i586",
"product": {
"name": "libMagickWand1-6.4.3.6-7.45.1.i586",
"product_id": "libMagickWand1-6.4.3.6-7.45.1.i586"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-6.4.3.6-7.45.1.i586",
"product": {
"name": "perl-PerlMagick-6.4.3.6-7.45.1.i586",
"product_id": "perl-PerlMagick-6.4.3.6-7.45.1.i586"
}
},
{
"category": "product_version",
"name": "libMagickCore1-6.4.3.6-7.45.1.i586",
"product": {
"name": "libMagickCore1-6.4.3.6-7.45.1.i586",
"product_id": "libMagickCore1-6.4.3.6-7.45.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-6.4.3.6-7.45.1.ia64",
"product": {
"name": "ImageMagick-6.4.3.6-7.45.1.ia64",
"product_id": "ImageMagick-6.4.3.6-7.45.1.ia64"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"product": {
"name": "ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"product_id": "ImageMagick-devel-6.4.3.6-7.45.1.ia64"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-6.4.3.6-7.45.1.ia64",
"product": {
"name": "libMagick++-devel-6.4.3.6-7.45.1.ia64",
"product_id": "libMagick++-devel-6.4.3.6-7.45.1.ia64"
}
},
{
"category": "product_version",
"name": "libMagick++1-6.4.3.6-7.45.1.ia64",
"product": {
"name": "libMagick++1-6.4.3.6-7.45.1.ia64",
"product_id": "libMagick++1-6.4.3.6-7.45.1.ia64"
}
},
{
"category": "product_version",
"name": "libMagickWand1-6.4.3.6-7.45.1.ia64",
"product": {
"name": "libMagickWand1-6.4.3.6-7.45.1.ia64",
"product_id": "libMagickWand1-6.4.3.6-7.45.1.ia64"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"product": {
"name": "perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"product_id": "perl-PerlMagick-6.4.3.6-7.45.1.ia64"
}
},
{
"category": "product_version",
"name": "libMagickCore1-6.4.3.6-7.45.1.ia64",
"product": {
"name": "libMagickCore1-6.4.3.6-7.45.1.ia64",
"product_id": "libMagickCore1-6.4.3.6-7.45.1.ia64"
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-6.4.3.6-7.45.1.ppc64",
"product": {
"name": "ImageMagick-6.4.3.6-7.45.1.ppc64",
"product_id": "ImageMagick-6.4.3.6-7.45.1.ppc64"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"product": {
"name": "ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"product_id": "ImageMagick-devel-6.4.3.6-7.45.1.ppc64"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"product": {
"name": "libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"product_id": "libMagick++-devel-6.4.3.6-7.45.1.ppc64"
}
},
{
"category": "product_version",
"name": "libMagick++1-6.4.3.6-7.45.1.ppc64",
"product": {
"name": "libMagick++1-6.4.3.6-7.45.1.ppc64",
"product_id": "libMagick++1-6.4.3.6-7.45.1.ppc64"
}
},
{
"category": "product_version",
"name": "libMagickWand1-6.4.3.6-7.45.1.ppc64",
"product": {
"name": "libMagickWand1-6.4.3.6-7.45.1.ppc64",
"product_id": "libMagickWand1-6.4.3.6-7.45.1.ppc64"
}
},
{
"category": "product_version",
"name": "libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"product": {
"name": "libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"product_id": "libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"product": {
"name": "perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"product_id": "perl-PerlMagick-6.4.3.6-7.45.1.ppc64"
}
},
{
"category": "product_version",
"name": "libMagickCore1-6.4.3.6-7.45.1.ppc64",
"product": {
"name": "libMagickCore1-6.4.3.6-7.45.1.ppc64",
"product_id": "libMagickCore1-6.4.3.6-7.45.1.ppc64"
}
},
{
"category": "product_version",
"name": "libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"product": {
"name": "libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"product_id": "libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-6.4.3.6-7.45.1.s390x",
"product": {
"name": "ImageMagick-6.4.3.6-7.45.1.s390x",
"product_id": "ImageMagick-6.4.3.6-7.45.1.s390x"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"product": {
"name": "ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"product_id": "ImageMagick-devel-6.4.3.6-7.45.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-6.4.3.6-7.45.1.s390x",
"product": {
"name": "libMagick++-devel-6.4.3.6-7.45.1.s390x",
"product_id": "libMagick++-devel-6.4.3.6-7.45.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagick++1-6.4.3.6-7.45.1.s390x",
"product": {
"name": "libMagick++1-6.4.3.6-7.45.1.s390x",
"product_id": "libMagick++1-6.4.3.6-7.45.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagickWand1-6.4.3.6-7.45.1.s390x",
"product": {
"name": "libMagickWand1-6.4.3.6-7.45.1.s390x",
"product_id": "libMagickWand1-6.4.3.6-7.45.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"product": {
"name": "libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"product_id": "libMagickWand1-32bit-6.4.3.6-7.45.1.s390x"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"product": {
"name": "perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"product_id": "perl-PerlMagick-6.4.3.6-7.45.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagickCore1-6.4.3.6-7.45.1.s390x",
"product": {
"name": "libMagickCore1-6.4.3.6-7.45.1.s390x",
"product_id": "libMagickCore1-6.4.3.6-7.45.1.s390x"
}
},
{
"category": "product_version",
"name": "libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"product": {
"name": "libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"product_id": "libMagickCore1-32bit-6.4.3.6-7.45.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ImageMagick-6.4.3.6-7.45.1.x86_64",
"product": {
"name": "ImageMagick-6.4.3.6-7.45.1.x86_64",
"product_id": "ImageMagick-6.4.3.6-7.45.1.x86_64"
}
},
{
"category": "product_version",
"name": "ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"product": {
"name": "ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"product_id": "ImageMagick-devel-6.4.3.6-7.45.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"product": {
"name": "libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"product_id": "libMagick++-devel-6.4.3.6-7.45.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagick++1-6.4.3.6-7.45.1.x86_64",
"product": {
"name": "libMagick++1-6.4.3.6-7.45.1.x86_64",
"product_id": "libMagick++1-6.4.3.6-7.45.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagickWand1-6.4.3.6-7.45.1.x86_64",
"product": {
"name": "libMagickWand1-6.4.3.6-7.45.1.x86_64",
"product_id": "libMagickWand1-6.4.3.6-7.45.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"product": {
"name": "libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"product_id": "libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64"
}
},
{
"category": "product_version",
"name": "perl-PerlMagick-6.4.3.6-7.45.1.x86_64",
"product": {
"name": "perl-PerlMagick-6.4.3.6-7.45.1.x86_64",
"product_id": "perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagickCore1-6.4.3.6-7.45.1.x86_64",
"product": {
"name": "libMagickCore1-6.4.3.6-7.45.1.x86_64",
"product_id": "libMagickCore1-6.4.3.6-7.45.1.x86_64"
}
},
{
"category": "product_version",
"name": "libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"product": {
"name": "libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"product_id": "libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 11 SP4",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_identification_helper": {
"cpe": "cpe:/a:suse:sle-sdk:11:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP4",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_sles:11:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:11:sp4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.4.3.6-7.45.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586"
},
"product_reference": "ImageMagick-6.4.3.6-7.45.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.4.3.6-7.45.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64"
},
"product_reference": "ImageMagick-6.4.3.6-7.45.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.4.3.6-7.45.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64"
},
"product_reference": "ImageMagick-6.4.3.6-7.45.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.4.3.6-7.45.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x"
},
"product_reference": "ImageMagick-6.4.3.6-7.45.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-6.4.3.6-7.45.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64"
},
"product_reference": "ImageMagick-6.4.3.6-7.45.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.4.3.6-7.45.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586"
},
"product_reference": "ImageMagick-devel-6.4.3.6-7.45.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.4.3.6-7.45.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64"
},
"product_reference": "ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.4.3.6-7.45.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64"
},
"product_reference": "ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.4.3.6-7.45.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x"
},
"product_reference": "ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ImageMagick-devel-6.4.3.6-7.45.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64"
},
"product_reference": "ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.4.3.6-7.45.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586"
},
"product_reference": "libMagick++-devel-6.4.3.6-7.45.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.4.3.6-7.45.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64"
},
"product_reference": "libMagick++-devel-6.4.3.6-7.45.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.4.3.6-7.45.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64"
},
"product_reference": "libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.4.3.6-7.45.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x"
},
"product_reference": "libMagick++-devel-6.4.3.6-7.45.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++-devel-6.4.3.6-7.45.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64"
},
"product_reference": "libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++1-6.4.3.6-7.45.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586"
},
"product_reference": "libMagick++1-6.4.3.6-7.45.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++1-6.4.3.6-7.45.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64"
},
"product_reference": "libMagick++1-6.4.3.6-7.45.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++1-6.4.3.6-7.45.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64"
},
"product_reference": "libMagick++1-6.4.3.6-7.45.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++1-6.4.3.6-7.45.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x"
},
"product_reference": "libMagick++1-6.4.3.6-7.45.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagick++1-6.4.3.6-7.45.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64"
},
"product_reference": "libMagick++1-6.4.3.6-7.45.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand1-6.4.3.6-7.45.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586"
},
"product_reference": "libMagickWand1-6.4.3.6-7.45.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand1-6.4.3.6-7.45.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64"
},
"product_reference": "libMagickWand1-6.4.3.6-7.45.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand1-6.4.3.6-7.45.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64"
},
"product_reference": "libMagickWand1-6.4.3.6-7.45.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand1-6.4.3.6-7.45.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x"
},
"product_reference": "libMagickWand1-6.4.3.6-7.45.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand1-6.4.3.6-7.45.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64"
},
"product_reference": "libMagickWand1-6.4.3.6-7.45.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64"
},
"product_reference": "libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand1-32bit-6.4.3.6-7.45.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x"
},
"product_reference": "libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64"
},
"product_reference": "libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.4.3.6-7.45.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586"
},
"product_reference": "perl-PerlMagick-6.4.3.6-7.45.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.4.3.6-7.45.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64"
},
"product_reference": "perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.4.3.6-7.45.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64"
},
"product_reference": "perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.4.3.6-7.45.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x"
},
"product_reference": "perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-PerlMagick-6.4.3.6-7.45.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
},
"product_reference": "perl-PerlMagick-6.4.3.6-7.45.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.45.1.i586 as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586"
},
"product_reference": "libMagickCore1-6.4.3.6-7.45.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.45.1.ia64 as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64"
},
"product_reference": "libMagickCore1-6.4.3.6-7.45.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.45.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64"
},
"product_reference": "libMagickCore1-6.4.3.6-7.45.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.45.1.s390x as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x"
},
"product_reference": "libMagickCore1-6.4.3.6-7.45.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.45.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64"
},
"product_reference": "libMagickCore1-6.4.3.6-7.45.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64"
},
"product_reference": "libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-32bit-6.4.3.6-7.45.1.s390x as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x"
},
"product_reference": "libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4",
"product_id": "SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64"
},
"product_reference": "libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.45.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586"
},
"product_reference": "libMagickCore1-6.4.3.6-7.45.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.45.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64"
},
"product_reference": "libMagickCore1-6.4.3.6-7.45.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.45.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64"
},
"product_reference": "libMagickCore1-6.4.3.6-7.45.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.45.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x"
},
"product_reference": "libMagickCore1-6.4.3.6-7.45.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-6.4.3.6-7.45.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64"
},
"product_reference": "libMagickCore1-6.4.3.6-7.45.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64"
},
"product_reference": "libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-32bit-6.4.3.6-7.45.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x"
},
"product_reference": "libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64"
},
"product_reference": "libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-9805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9805"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted pnm file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9805",
"url": "https://www.suse.com/security/cve/CVE-2014-9805"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9805",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983752 for CVE-2014-9805",
"url": "https://bugzilla.suse.com/983752"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9805"
},
{
"cve": "CVE-2014-9806",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9806"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (file descriptor consumption) via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9806",
"url": "https://www.suse.com/security/cve/CVE-2014-9806"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9806",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983774 for CVE-2014-9806",
"url": "https://bugzilla.suse.com/983774"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9806"
},
{
"cve": "CVE-2014-9807",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9807"
}
],
"notes": [
{
"category": "general",
"text": "The pdb coder in ImageMagick allows remote attackers to cause a denial of service (double free) via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9807",
"url": "https://www.suse.com/security/cve/CVE-2014-9807"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9807",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983794 for CVE-2014-9807",
"url": "https://bugzilla.suse.com/983794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9807"
},
{
"cve": "CVE-2014-9808",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9808"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted dpc image.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9808",
"url": "https://www.suse.com/security/cve/CVE-2014-9808"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9808",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983796 for CVE-2014-9808",
"url": "https://bugzilla.suse.com/983796"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9808"
},
{
"cve": "CVE-2014-9809",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9809"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted xwd image.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9809",
"url": "https://www.suse.com/security/cve/CVE-2014-9809"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9809",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983799 for CVE-2014-9809",
"url": "https://bugzilla.suse.com/983799"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9809"
},
{
"cve": "CVE-2014-9810",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9810"
}
],
"notes": [
{
"category": "general",
"text": "The dpx file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed dpx file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9810",
"url": "https://www.suse.com/security/cve/CVE-2014-9810"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9810",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983803 for CVE-2014-9810",
"url": "https://bugzilla.suse.com/983803"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9810"
},
{
"cve": "CVE-2014-9811",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9811"
}
],
"notes": [
{
"category": "general",
"text": "The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9811",
"url": "https://www.suse.com/security/cve/CVE-2014-9811"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9811",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984032 for CVE-2014-9811",
"url": "https://bugzilla.suse.com/984032"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9811"
},
{
"cve": "CVE-2014-9812",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9812"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted ps file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9812",
"url": "https://www.suse.com/security/cve/CVE-2014-9812"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9812",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984137 for CVE-2014-9812",
"url": "https://bugzilla.suse.com/984137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9812"
},
{
"cve": "CVE-2014-9813",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9813"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted viff file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9813",
"url": "https://www.suse.com/security/cve/CVE-2014-9813"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9813",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984035 for CVE-2014-9813",
"url": "https://bugzilla.suse.com/984035"
},
{
"category": "external",
"summary": "SUSE Bug 984398 for CVE-2014-9813",
"url": "https://bugzilla.suse.com/984398"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9813"
},
{
"cve": "CVE-2014-9814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9814"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted wpg file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9814",
"url": "https://www.suse.com/security/cve/CVE-2014-9814"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9814",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984193 for CVE-2014-9814",
"url": "https://bugzilla.suse.com/984193"
},
{
"category": "external",
"summary": "SUSE Bug 984372 for CVE-2014-9814",
"url": "https://bugzilla.suse.com/984372"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9814"
},
{
"cve": "CVE-2014-9815",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9815"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted wpg file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9815",
"url": "https://www.suse.com/security/cve/CVE-2014-9815"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9815",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984372 for CVE-2014-9815",
"url": "https://bugzilla.suse.com/984372"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9815"
},
{
"cve": "CVE-2014-9816",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9816"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted viff file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9816",
"url": "https://www.suse.com/security/cve/CVE-2014-9816"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9816",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984035 for CVE-2014-9816",
"url": "https://bugzilla.suse.com/984035"
},
{
"category": "external",
"summary": "SUSE Bug 984398 for CVE-2014-9816",
"url": "https://bugzilla.suse.com/984398"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9816"
},
{
"cve": "CVE-2014-9817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9817"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pdb file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9817",
"url": "https://www.suse.com/security/cve/CVE-2014-9817"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9817",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984400 for CVE-2014-9817",
"url": "https://bugzilla.suse.com/984400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9817"
},
{
"cve": "CVE-2014-9818",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9818"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a malformed sun file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9818",
"url": "https://www.suse.com/security/cve/CVE-2014-9818"
},
{
"category": "external",
"summary": "SUSE Bug 1000690 for CVE-2014-9818",
"url": "https://bugzilla.suse.com/1000690"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9818",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984181 for CVE-2014-9818",
"url": "https://bugzilla.suse.com/984181"
},
{
"category": "external",
"summary": "SUSE Bug 984186 for CVE-2014-9818",
"url": "https://bugzilla.suse.com/984186"
},
{
"category": "external",
"summary": "SUSE Bug 984409 for CVE-2014-9818",
"url": "https://bugzilla.suse.com/984409"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9818"
},
{
"cve": "CVE-2014-9819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9819"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerability than CVE-2014-9823.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9819",
"url": "https://www.suse.com/security/cve/CVE-2014-9819"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9819",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984142 for CVE-2014-9819",
"url": "https://bugzilla.suse.com/984142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9819"
},
{
"cve": "CVE-2014-9820",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9820"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pnm file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9820",
"url": "https://www.suse.com/security/cve/CVE-2014-9820"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9820",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984150 for CVE-2014-9820",
"url": "https://bugzilla.suse.com/984150"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9820"
},
{
"cve": "CVE-2014-9822",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9822"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted quantum file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9822",
"url": "https://www.suse.com/security/cve/CVE-2014-9822"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9822",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984187 for CVE-2014-9822",
"url": "https://bugzilla.suse.com/984187"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9822"
},
{
"cve": "CVE-2014-9823",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9823"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerability than CVE-2014-9819.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9823",
"url": "https://www.suse.com/security/cve/CVE-2014-9823"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9823",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984401 for CVE-2014-9823",
"url": "https://bugzilla.suse.com/984401"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9823"
},
{
"cve": "CVE-2014-9824",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9824"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different vulnerability than CVE-2014-9825.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9824",
"url": "https://www.suse.com/security/cve/CVE-2014-9824"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9824",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984185 for CVE-2014-9824",
"url": "https://bugzilla.suse.com/984185"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9824"
},
{
"cve": "CVE-2014-9826",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9826"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick allows remote attackers to have unspecified impact via vectors related to error handling in sun files.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9826",
"url": "https://www.suse.com/security/cve/CVE-2014-9826"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9826",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984186 for CVE-2014-9826",
"url": "https://bugzilla.suse.com/984186"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "low"
}
],
"title": "CVE-2014-9826"
},
{
"cve": "CVE-2014-9828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9828"
}
],
"notes": [
{
"category": "general",
"text": "coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9828",
"url": "https://www.suse.com/security/cve/CVE-2014-9828"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9828",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984028 for CVE-2014-9828",
"url": "https://bugzilla.suse.com/984028"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9828"
},
{
"cve": "CVE-2014-9829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9829"
}
],
"notes": [
{
"category": "general",
"text": "coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted sun file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9829",
"url": "https://www.suse.com/security/cve/CVE-2014-9829"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9829",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984409 for CVE-2014-9829",
"url": "https://bugzilla.suse.com/984409"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9829"
},
{
"cve": "CVE-2014-9830",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9830"
}
],
"notes": [
{
"category": "general",
"text": "coders/sun.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted sun file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9830",
"url": "https://www.suse.com/security/cve/CVE-2014-9830"
},
{
"category": "external",
"summary": "SUSE Bug 1000690 for CVE-2014-9830",
"url": "https://bugzilla.suse.com/1000690"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9830",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984135 for CVE-2014-9830",
"url": "https://bugzilla.suse.com/984135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9830"
},
{
"cve": "CVE-2014-9831",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9831"
}
],
"notes": [
{
"category": "general",
"text": "coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted wpg file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9831",
"url": "https://www.suse.com/security/cve/CVE-2014-9831"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9831",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984375 for CVE-2014-9831",
"url": "https://bugzilla.suse.com/984375"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9831"
},
{
"cve": "CVE-2014-9834",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9834"
}
],
"notes": [
{
"category": "general",
"text": "Heap overflow in ImageMagick 6.8.9-9 via a crafted pict file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9834",
"url": "https://www.suse.com/security/cve/CVE-2014-9834"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9834",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984436 for CVE-2014-9834",
"url": "https://bugzilla.suse.com/984436"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9834"
},
{
"cve": "CVE-2014-9835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9835"
}
],
"notes": [
{
"category": "general",
"text": "Heap overflow in ImageMagick 6.8.9-9 via a crafted wpf file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9835",
"url": "https://www.suse.com/security/cve/CVE-2014-9835"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9835",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984145 for CVE-2014-9835",
"url": "https://bugzilla.suse.com/984145"
},
{
"category": "external",
"summary": "SUSE Bug 984375 for CVE-2014-9835",
"url": "https://bugzilla.suse.com/984375"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9835"
},
{
"cve": "CVE-2014-9836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9836"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service via a crafted xpm file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9836",
"url": "https://www.suse.com/security/cve/CVE-2014-9836"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9836",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984023 for CVE-2014-9836",
"url": "https://bugzilla.suse.com/984023"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9836"
},
{
"cve": "CVE-2014-9837",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9837"
}
],
"notes": [
{
"category": "general",
"text": "coders/pnm.c in ImageMagick 6.9.0-1 Beta and earlier allows remote attackers to cause a denial of service (crash) via a crafted png file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9837",
"url": "https://www.suse.com/security/cve/CVE-2014-9837"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9837",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984166 for CVE-2014-9837",
"url": "https://bugzilla.suse.com/984166"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9837"
},
{
"cve": "CVE-2014-9838",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9838"
}
],
"notes": [
{
"category": "general",
"text": "magick/cache.c in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (crash).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9838",
"url": "https://www.suse.com/security/cve/CVE-2014-9838"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9838",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984370 for CVE-2014-9838",
"url": "https://bugzilla.suse.com/984370"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9838"
},
{
"cve": "CVE-2014-9839",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9839"
}
],
"notes": [
{
"category": "general",
"text": "magick/colormap-private.h in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9839",
"url": "https://www.suse.com/security/cve/CVE-2014-9839"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9839",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984379 for CVE-2014-9839",
"url": "https://bugzilla.suse.com/984379"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9839"
},
{
"cve": "CVE-2014-9840",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9840"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted palm file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9840",
"url": "https://www.suse.com/security/cve/CVE-2014-9840"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9840",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984433 for CVE-2014-9840",
"url": "https://bugzilla.suse.com/984433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9840"
},
{
"cve": "CVE-2014-9842",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9842"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in the ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9842",
"url": "https://www.suse.com/security/cve/CVE-2014-9842"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9842",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984172 for CVE-2014-9842",
"url": "https://bugzilla.suse.com/984172"
},
{
"category": "external",
"summary": "SUSE Bug 984374 for CVE-2014-9842",
"url": "https://bugzilla.suse.com/984374"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9842"
},
{
"cve": "CVE-2014-9844",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9844"
}
],
"notes": [
{
"category": "general",
"text": "The ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9844",
"url": "https://www.suse.com/security/cve/CVE-2014-9844"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9844",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984373 for CVE-2014-9844",
"url": "https://bugzilla.suse.com/984373"
},
{
"category": "external",
"summary": "SUSE Bug 984408 for CVE-2014-9844",
"url": "https://bugzilla.suse.com/984408"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9844"
},
{
"cve": "CVE-2014-9845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9845"
}
],
"notes": [
{
"category": "general",
"text": "The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service (crash) via a corrupted dib file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9845",
"url": "https://www.suse.com/security/cve/CVE-2014-9845"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9845",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984394 for CVE-2014-9845",
"url": "https://bugzilla.suse.com/984394"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9845"
},
{
"cve": "CVE-2014-9846",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9846"
}
],
"notes": [
{
"category": "general",
"text": "Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9846",
"url": "https://www.suse.com/security/cve/CVE-2014-9846"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9846",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983521 for CVE-2014-9846",
"url": "https://bugzilla.suse.com/983521"
},
{
"category": "external",
"summary": "SUSE Bug 984408 for CVE-2014-9846",
"url": "https://bugzilla.suse.com/984408"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9846"
},
{
"cve": "CVE-2014-9847",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9847"
}
],
"notes": [
{
"category": "general",
"text": "The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9847",
"url": "https://www.suse.com/security/cve/CVE-2014-9847"
},
{
"category": "external",
"summary": "SUSE Bug 1040304 for CVE-2014-9847",
"url": "https://bugzilla.suse.com/1040304"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9847",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984144 for CVE-2014-9847",
"url": "https://bugzilla.suse.com/984144"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9847"
},
{
"cve": "CVE-2014-9849",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9849"
}
],
"notes": [
{
"category": "general",
"text": "The png coder in ImageMagick allows remote attackers to cause a denial of service (crash).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9849",
"url": "https://www.suse.com/security/cve/CVE-2014-9849"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9849",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984018 for CVE-2014-9849",
"url": "https://bugzilla.suse.com/984018"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9849"
},
{
"cve": "CVE-2014-9851",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9851"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (application crash).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9851",
"url": "https://www.suse.com/security/cve/CVE-2014-9851"
},
{
"category": "external",
"summary": "SUSE Bug 1106989 for CVE-2014-9851",
"url": "https://bugzilla.suse.com/1106989"
},
{
"category": "external",
"summary": "SUSE Bug 1106996 for CVE-2014-9851",
"url": "https://bugzilla.suse.com/1106996"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9851",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984160 for CVE-2014-9851",
"url": "https://bugzilla.suse.com/984160"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9851"
},
{
"cve": "CVE-2014-9853",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9853"
}
],
"notes": [
{
"category": "general",
"text": "Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9853",
"url": "https://www.suse.com/security/cve/CVE-2014-9853"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9853",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984408 for CVE-2014-9853",
"url": "https://bugzilla.suse.com/984408"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9853"
},
{
"cve": "CVE-2014-9854",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-9854"
}
],
"notes": [
{
"category": "general",
"text": "coders/tiff.c in ImageMagick allows remote attackers to cause a denial of service (application crash) via vectors related to the \"identification of image.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-9854",
"url": "https://www.suse.com/security/cve/CVE-2014-9854"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2014-9854",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 984184 for CVE-2014-9854",
"url": "https://bugzilla.suse.com/984184"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2014-9854"
},
{
"cve": "CVE-2015-8894",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8894"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in coders/tga.c in ImageMagick 7.0.0 and later allows remote attackers to cause a denial of service (application crash) via a crafted tga file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8894",
"url": "https://www.suse.com/security/cve/CVE-2015-8894"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2015-8894",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983523 for CVE-2015-8894",
"url": "https://bugzilla.suse.com/983523"
},
{
"category": "external",
"summary": "SUSE Bug 983533 for CVE-2015-8894",
"url": "https://bugzilla.suse.com/983533"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2015-8894"
},
{
"cve": "CVE-2015-8896",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8896"
}
],
"notes": [
{
"category": "general",
"text": "Integer truncation issue in coders/pict.c in ImageMagick before 7.0.5-0 allows remote attackers to cause a denial of service (application crash) via a crafted .pict file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8896",
"url": "https://www.suse.com/security/cve/CVE-2015-8896"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2015-8896",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983533 for CVE-2015-8896",
"url": "https://bugzilla.suse.com/983533"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2015-8896"
},
{
"cve": "CVE-2015-8897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8897"
}
],
"notes": [
{
"category": "general",
"text": "The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (application crash) via a crafted png file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8897",
"url": "https://www.suse.com/security/cve/CVE-2015-8897"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2015-8897",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983739 for CVE-2015-8897",
"url": "https://bugzilla.suse.com/983739"
},
{
"category": "external",
"summary": "SUSE Bug 983746 for CVE-2015-8897",
"url": "https://bugzilla.suse.com/983746"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "low"
}
],
"title": "CVE-2015-8897"
},
{
"cve": "CVE-2015-8898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8898"
}
],
"notes": [
{
"category": "general",
"text": "The WriteImages function in magick/constitute.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8898",
"url": "https://www.suse.com/security/cve/CVE-2015-8898"
},
{
"category": "external",
"summary": "SUSE Bug 982969 for CVE-2015-8898",
"url": "https://bugzilla.suse.com/982969"
},
{
"category": "external",
"summary": "SUSE Bug 983739 for CVE-2015-8898",
"url": "https://bugzilla.suse.com/983739"
},
{
"category": "external",
"summary": "SUSE Bug 983746 for CVE-2015-8898",
"url": "https://bugzilla.suse.com/983746"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2015-8898"
},
{
"cve": "CVE-2015-8901",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8901"
}
],
"notes": [
{
"category": "general",
"text": "ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted MIFF file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8901",
"url": "https://www.suse.com/security/cve/CVE-2015-8901"
},
{
"category": "external",
"summary": "SUSE Bug 983234 for CVE-2015-8901",
"url": "https://bugzilla.suse.com/983234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2015-8901"
},
{
"cve": "CVE-2015-8902",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8902"
}
],
"notes": [
{
"category": "general",
"text": "The ReadBlobByte function in coders/pdb.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted PDB file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8902",
"url": "https://www.suse.com/security/cve/CVE-2015-8902"
},
{
"category": "external",
"summary": "SUSE Bug 1052711 for CVE-2015-8902",
"url": "https://bugzilla.suse.com/1052711"
},
{
"category": "external",
"summary": "SUSE Bug 983253 for CVE-2015-8902",
"url": "https://bugzilla.suse.com/983253"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2015-8902"
},
{
"cve": "CVE-2015-8903",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8903"
}
],
"notes": [
{
"category": "general",
"text": "The ReadVICARImage function in coders/vicar.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted VICAR file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8903",
"url": "https://www.suse.com/security/cve/CVE-2015-8903"
},
{
"category": "external",
"summary": "SUSE Bug 983259 for CVE-2015-8903",
"url": "https://bugzilla.suse.com/983259"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "important"
}
],
"title": "CVE-2015-8903"
},
{
"cve": "CVE-2016-4562",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-4562"
}
],
"notes": [
{
"category": "general",
"text": "The DrawDashPolygon function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 mishandles calculations of certain vertices integer data, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-4562",
"url": "https://www.suse.com/security/cve/CVE-2016-4562"
},
{
"category": "external",
"summary": "SUSE Bug 983292 for CVE-2016-4562",
"url": "https://bugzilla.suse.com/983292"
},
{
"category": "external",
"summary": "SUSE Bug 983305 for CVE-2016-4562",
"url": "https://bugzilla.suse.com/983305"
},
{
"category": "external",
"summary": "SUSE Bug 983308 for CVE-2016-4562",
"url": "https://bugzilla.suse.com/983308"
},
{
"category": "external",
"summary": "SUSE Bug 983309 for CVE-2016-4562",
"url": "https://bugzilla.suse.com/983309"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2016-4562"
},
{
"cve": "CVE-2016-4563",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-4563"
}
],
"notes": [
{
"category": "general",
"text": "The TraceStrokePolygon function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 mishandles the relationship between the BezierQuantum value and certain strokes data, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-4563",
"url": "https://www.suse.com/security/cve/CVE-2016-4563"
},
{
"category": "external",
"summary": "SUSE Bug 983305 for CVE-2016-4563",
"url": "https://bugzilla.suse.com/983305"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2016-4563"
},
{
"cve": "CVE-2016-4564",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-4564"
}
],
"notes": [
{
"category": "general",
"text": "The DrawImage function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 makes an incorrect function call in attempting to locate the next token, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-4564",
"url": "https://www.suse.com/security/cve/CVE-2016-4564"
},
{
"category": "external",
"summary": "SUSE Bug 983308 for CVE-2016-4564",
"url": "https://bugzilla.suse.com/983308"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2016-4564"
},
{
"cve": "CVE-2016-5687",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5687"
}
],
"notes": [
{
"category": "general",
"text": "The VerticalFilter function in the DDS coder in ImageMagick before 6.9.4-3 and 7.x before 7.0.1-4 allows remote attackers to have unspecified impact via a crafted DDS file, which triggers an out-of-bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5687",
"url": "https://www.suse.com/security/cve/CVE-2016-5687"
},
{
"category": "external",
"summary": "SUSE Bug 1000713 for CVE-2016-5687",
"url": "https://bugzilla.suse.com/1000713"
},
{
"category": "external",
"summary": "SUSE Bug 1000714 for CVE-2016-5687",
"url": "https://bugzilla.suse.com/1000714"
},
{
"category": "external",
"summary": "SUSE Bug 1074610 for CVE-2016-5687",
"url": "https://bugzilla.suse.com/1074610"
},
{
"category": "external",
"summary": "SUSE Bug 985448 for CVE-2016-5687",
"url": "https://bugzilla.suse.com/985448"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2016-5687"
},
{
"cve": "CVE-2016-5688",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5688"
}
],
"notes": [
{
"category": "general",
"text": "The WPG parser in ImageMagick before 6.9.4-4 and 7.x before 7.0.1-5, when a memory limit is set, allows remote attackers to have unspecified impact via vectors related to the SetImageExtent return-value check, which trigger (1) a heap-based buffer overflow in the SetPixelIndex function or an invalid write operation in the (2) ScaleCharToQuantum or (3) SetPixelIndex functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5688",
"url": "https://www.suse.com/security/cve/CVE-2016-5688"
},
{
"category": "external",
"summary": "SUSE Bug 985442 for CVE-2016-5688",
"url": "https://bugzilla.suse.com/985442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2016-5688"
},
{
"cve": "CVE-2016-5689",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5689"
}
],
"notes": [
{
"category": "general",
"text": "The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact by leveraging lack of NULL pointer checks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5689",
"url": "https://www.suse.com/security/cve/CVE-2016-5689"
},
{
"category": "external",
"summary": "SUSE Bug 985460 for CVE-2016-5689",
"url": "https://bugzilla.suse.com/985460"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2016-5689"
},
{
"cve": "CVE-2016-5690",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5690"
}
],
"notes": [
{
"category": "general",
"text": "The ReadDCMImage function in DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact via vectors involving the for statement in computing the pixel scaling table.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5690",
"url": "https://www.suse.com/security/cve/CVE-2016-5690"
},
{
"category": "external",
"summary": "SUSE Bug 985451 for CVE-2016-5690",
"url": "https://bugzilla.suse.com/985451"
},
{
"category": "external",
"summary": "SUSE Bug 985460 for CVE-2016-5690",
"url": "https://bugzilla.suse.com/985460"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2016-5690"
},
{
"cve": "CVE-2016-5691",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5691"
}
],
"notes": [
{
"category": "general",
"text": "The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact by leveraging lack of validation of (1) pixel.red, (2) pixel.green, and (3) pixel.blue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5691",
"url": "https://www.suse.com/security/cve/CVE-2016-5691"
},
{
"category": "external",
"summary": "SUSE Bug 985456 for CVE-2016-5691",
"url": "https://bugzilla.suse.com/985456"
},
{
"category": "external",
"summary": "SUSE Bug 985460 for CVE-2016-5691",
"url": "https://bugzilla.suse.com/985460"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2016-5691"
},
{
"cve": "CVE-2016-5841",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5841"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflow in MagickCore/profile.c in ImageMagick before 7.0.2-1 allows remote attackers to cause a denial of service (segmentation fault) or possibly execute arbitrary code via vectors involving the offset variable.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5841",
"url": "https://www.suse.com/security/cve/CVE-2016-5841"
},
{
"category": "external",
"summary": "SUSE Bug 986609 for CVE-2016-5841",
"url": "https://bugzilla.suse.com/986609"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2016-5841"
},
{
"cve": "CVE-2016-5842",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5842"
}
],
"notes": [
{
"category": "general",
"text": "MagickCore/property.c in ImageMagick before 7.0.2-1 allows remote attackers to obtain sensitive memory information via vectors involving the q variable, which triggers an out-of-bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5842",
"url": "https://www.suse.com/security/cve/CVE-2016-5842"
},
{
"category": "external",
"summary": "SUSE Bug 986608 for CVE-2016-5842",
"url": "https://bugzilla.suse.com/986608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 11 SP4:libMagickCore1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:ImageMagick-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++-devel-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagick++1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-32bit-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:libMagickWand1-6.4.3.6-7.45.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-PerlMagick-6.4.3.6-7.45.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-07-11T10:12:01Z",
"details": "moderate"
}
],
"title": "CVE-2016-5842"
}
]
}
gsd-2014-9811
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2014-9811",
"description": "The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file.",
"id": "GSD-2014-9811",
"references": [
"https://www.suse.com/security/cve/CVE-2014-9811.html",
"https://ubuntu.com/security/CVE-2014-9811"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2014-9811"
],
"details": "The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file.",
"id": "GSD-2014-9811",
"modified": "2023-12-13T01:22:47.878592Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2014-9811",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=82a5bbdd47b9b3f43ce3c2aa18741aecc4a0f962",
"refsource": "CONFIRM",
"url": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=82a5bbdd47b9b3f43ce3c2aa18741aecc4a0f962"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1343467",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1343467"
},
{
"name": "[oss-security] 20160602 Re: ImageMagick CVEs",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2016/06/02/13"
},
{
"name": "[oss-security] 20141224 Imagemagick fuzzing bug",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2014/12/24/1"
},
{
"name": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=914da276f717b3e21e5af6614887af14af87a9b8",
"refsource": "CONFIRM",
"url": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=914da276f717b3e21e5af6614887af14af87a9b8"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:imagemagick:imagemagick:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2014-9811"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1343467",
"refsource": "CONFIRM",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1343467"
},
{
"name": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=914da276f717b3e21e5af6614887af14af87a9b8",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=914da276f717b3e21e5af6614887af14af87a9b8"
},
{
"name": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=82a5bbdd47b9b3f43ce3c2aa18741aecc4a0f962",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=82a5bbdd47b9b3f43ce3c2aa18741aecc4a0f962"
},
{
"name": "[oss-security] 20160602 Re: ImageMagick CVEs",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Patch",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2016/06/02/13"
},
{
"name": "[oss-security] 20141224 Imagemagick fuzzing bug",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2014/12/24/1"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
},
"lastModifiedDate": "2017-04-04T15:36Z",
"publishedDate": "2017-03-30T15:59Z"
}
}
}
fkie_cve-2014-9811
Vulnerability from fkie_nvd
Published
2017-03-30 15:59
Modified
2025-04-20 01:37
Severity ?
Summary
The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| cve@mitre.org | http://www.openwall.com/lists/oss-security/2014/12/24/1 | Mailing List, Third Party Advisory | |
| cve@mitre.org | http://www.openwall.com/lists/oss-security/2016/06/02/13 | Mailing List, Patch, Third Party Advisory | |
| cve@mitre.org | https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream&id=82a5bbdd47b9b3f43ce3c2aa18741aecc4a0f962 | Patch, Third Party Advisory | |
| cve@mitre.org | https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream&id=914da276f717b3e21e5af6614887af14af87a9b8 | Patch, Third Party Advisory | |
| cve@mitre.org | https://bugzilla.redhat.com/show_bug.cgi?id=1343467 | Issue Tracking, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.openwall.com/lists/oss-security/2014/12/24/1 | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.openwall.com/lists/oss-security/2016/06/02/13 | Mailing List, Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream&id=82a5bbdd47b9b3f43ce3c2aa18741aecc4a0f962 | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream&id=914da276f717b3e21e5af6614887af14af87a9b8 | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=1343467 | Issue Tracking, Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| imagemagick | imagemagick | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*",
"matchCriteriaId": "CFC2C780-A54E-4426-9C52-46A20216339E",
"versionEndExcluding": "6.9.4-0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file."
},
{
"lang": "es",
"value": "El manejador de archivos xwd en ImageMagick permite a atacantes remotos provocar una denegaci\u00f3n de servicio (fallo de segmentaci\u00f3n y ca\u00edda de aplicaci\u00f3n) a trav\u00e9s de un archivo xwd mal formado."
}
],
"id": "CVE-2014-9811",
"lastModified": "2025-04-20T01:37:25.860",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2017-03-30T15:59:00.437",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2014/12/24/1"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2016/06/02/13"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=82a5bbdd47b9b3f43ce3c2aa18741aecc4a0f962"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=914da276f717b3e21e5af6614887af14af87a9b8"
},
{
"source": "cve@mitre.org",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1343467"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2014/12/24/1"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2016/06/02/13"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=82a5bbdd47b9b3f43ce3c2aa18741aecc4a0f962"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=914da276f717b3e21e5af6614887af14af87a9b8"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1343467"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
ghsa-85f6-ccw6-739v
Vulnerability from github
Published
2022-05-17 02:51
Modified
2022-05-17 02:51
Severity ?
VLAI Severity ?
Details
The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file.
{
"affected": [],
"aliases": [
"CVE-2014-9811"
],
"database_specific": {
"cwe_ids": [
"CWE-20"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2017-03-30T15:59:00Z",
"severity": "MODERATE"
},
"details": "The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file.",
"id": "GHSA-85f6-ccw6-739v",
"modified": "2022-05-17T02:51:57Z",
"published": "2022-05-17T02:51:57Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9811"
},
{
"type": "WEB",
"url": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=82a5bbdd47b9b3f43ce3c2aa18741aecc4a0f962"
},
{
"type": "WEB",
"url": "https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream\u0026id=914da276f717b3e21e5af6614887af14af87a9b8"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1343467"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2014/12/24/1"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2016/06/02/13"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…