{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"low"},"category":"csaf_security_advisory","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"Security update for GraphicsMagick","title":"Title of the patch"},{"category":"description","text":"This update for GraphicsMagick fixes the following security issue:\n\n- CVE-2018-16750: Prevent memory leak in the formatIPTCfromBuffer function\n  (bsc#1108283)\n- CVE-2018-16323: ReadXBMImage left data uninitialized when processing an XBM\n  file that has a negative pixel value. If the affected code was used as a\n  library loaded into a process that includes sensitive information, that\n  information sometimes can be leaked via the image data (bsc#1106855)\n- CVE-2018-16640: Prevent memory leak in the function ReadOneJNGImage\n  (bsc#1107619).\n- CVE-2018-16642: The function InsertRow allowed remote attackers to cause a\n  denial of service via a crafted image file due to an out-of-bounds write\n  (bsc#1107616).\n- CVE-2018-16643: The functions ReadDCMImage, ReadPWPImage, ReadCALSImage, and\n  ReadPICTImage did check the return value of the fputc function, which allowed\n  remote attackers to cause a denial of service via a crafted image file\n  (bsc#1107612).\n- CVE-2018-16644: Added missing check for length in the functions ReadDCMImage\n  and ReadPICTImage, which allowed remote attackers to cause a denial of service\n  via a crafted image (bsc#1107609).\n- CVE-2018-16645: Prevent excessive memory allocation issue in the functions\n  ReadBMPImage and ReadDIBImage, which allowed remote attackers to cause a denial\n  of service via a crafted image file (bsc#1107604).\n- CVE-2018-18024: Fixed an infinite loop in the ReadBMPImage function of\n  the coders/bmp.c file. Remote attackers could leverage this vulnerability\n  to cause a denial of service via a crafted bmp file. (bsc#1111069)\n- CVE-2018-18016: Fixed a memory leak in WritePCXImage (bsc#1111072).\n- CVE-2018-17965: Fixed a memory leak in WriteSGIImage (bsc#1110747).\n- CVE-2018-17966: Fixed a memory leak in WritePDBImage (bsc#1110746).\n- CVE-2018-16749: A missing NULL check in ReadOneJNGImage allowed remote\n  attackers to cause a denial of service (WriteBlob assertion failure and\n  application exit) via a crafted file. (bsc#1108282)\n","title":"Description of the patch"},{"category":"details","text":"sdksp4-GraphicsMagick-13827,slestso13-GraphicsMagick-13827","title":"Patchnames"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"SUSE ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"self","summary":"URL of this CSAF notice","url":"https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_3269-1.json"},{"category":"self","summary":"URL for SUSE-SU-2018:3269-1","url":"https://www.suse.com/support/update/announcement/2018/suse-su-20183269-1/"},{"category":"self","summary":"E-Mail link for SUSE-SU-2018:3269-1","url":"https://lists.suse.com/pipermail/sle-security-updates/2018-October/004752.html"},{"category":"self","summary":"SUSE Bug 1106855","url":"https://bugzilla.suse.com/1106855"},{"category":"self","summary":"SUSE Bug 1107604","url":"https://bugzilla.suse.com/1107604"},{"category":"self","summary":"SUSE Bug 1107609","url":"https://bugzilla.suse.com/1107609"},{"category":"self","summary":"SUSE Bug 1107612","url":"https://bugzilla.suse.com/1107612"},{"category":"self","summary":"SUSE Bug 1107616","url":"https://bugzilla.suse.com/1107616"},{"category":"self","summary":"SUSE Bug 1107619","url":"https://bugzilla.suse.com/1107619"},{"category":"self","summary":"SUSE Bug 1108282","url":"https://bugzilla.suse.com/1108282"},{"category":"self","summary":"SUSE Bug 1108283","url":"https://bugzilla.suse.com/1108283"},{"category":"self","summary":"SUSE Bug 1110746","url":"https://bugzilla.suse.com/1110746"},{"category":"self","summary":"SUSE Bug 1110747","url":"https://bugzilla.suse.com/1110747"},{"category":"self","summary":"SUSE Bug 1111069","url":"https://bugzilla.suse.com/1111069"},{"category":"self","summary":"SUSE Bug 1111072","url":"https://bugzilla.suse.com/1111072"},{"category":"self","summary":"SUSE CVE CVE-2018-16323 page","url":"https://www.suse.com/security/cve/CVE-2018-16323/"},{"category":"self","summary":"SUSE CVE CVE-2018-16640 page","url":"https://www.suse.com/security/cve/CVE-2018-16640/"},{"category":"self","summary":"SUSE CVE CVE-2018-16642 page","url":"https://www.suse.com/security/cve/CVE-2018-16642/"},{"category":"self","summary":"SUSE CVE CVE-2018-16643 page","url":"https://www.suse.com/security/cve/CVE-2018-16643/"},{"category":"self","summary":"SUSE CVE CVE-2018-16644 page","url":"https://www.suse.com/security/cve/CVE-2018-16644/"},{"category":"self","summary":"SUSE CVE CVE-2018-16645 page","url":"https://www.suse.com/security/cve/CVE-2018-16645/"},{"category":"self","summary":"SUSE CVE CVE-2018-16749 page","url":"https://www.suse.com/security/cve/CVE-2018-16749/"},{"category":"self","summary":"SUSE CVE CVE-2018-16750 page","url":"https://www.suse.com/security/cve/CVE-2018-16750/"},{"category":"self","summary":"SUSE CVE CVE-2018-17965 page","url":"https://www.suse.com/security/cve/CVE-2018-17965/"},{"category":"self","summary":"SUSE CVE CVE-2018-17966 page","url":"https://www.suse.com/security/cve/CVE-2018-17966/"},{"category":"self","summary":"SUSE CVE CVE-2018-18016 page","url":"https://www.suse.com/security/cve/CVE-2018-18016/"},{"category":"self","summary":"SUSE CVE CVE-2018-18024 page","url":"https://www.suse.com/security/cve/CVE-2018-18024/"}],"title":"Security update for GraphicsMagick","tracking":{"current_release_date":"2018-10-22T08:16:11Z","generator":{"date":"2018-10-22T08:16:11Z","engine":{"name":"cve-database.git:bin/generate-csaf.pl","version":"1"}},"id":"SUSE-SU-2018:3269-1","initial_release_date":"2018-10-22T08:16:11Z","revision_history":[{"date":"2018-10-22T08:16:11Z","number":"1","summary":"Current version"}],"status":"final","version":"1"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_version","name":"GraphicsMagick-1.2.5-78.72.1.i586","product":{"name":"GraphicsMagick-1.2.5-78.72.1.i586","product_id":"GraphicsMagick-1.2.5-78.72.1.i586"}},{"category":"product_version","name":"libGraphicsMagick2-1.2.5-78.72.1.i586","product":{"name":"libGraphicsMagick2-1.2.5-78.72.1.i586","product_id":"libGraphicsMagick2-1.2.5-78.72.1.i586"}},{"category":"product_version","name":"perl-GraphicsMagick-1.2.5-78.72.1.i586","product":{"name":"perl-GraphicsMagick-1.2.5-78.72.1.i586","product_id":"perl-GraphicsMagick-1.2.5-78.72.1.i586"}}],"category":"architecture","name":"i586"},{"branches":[{"category":"product_version","name":"GraphicsMagick-1.2.5-78.72.1.ia64","product":{"name":"GraphicsMagick-1.2.5-78.72.1.ia64","product_id":"GraphicsMagick-1.2.5-78.72.1.ia64"}},{"category":"product_version","name":"libGraphicsMagick2-1.2.5-78.72.1.ia64","product":{"name":"libGraphicsMagick2-1.2.5-78.72.1.ia64","product_id":"libGraphicsMagick2-1.2.5-78.72.1.ia64"}},{"category":"product_version","name":"perl-GraphicsMagick-1.2.5-78.72.1.ia64","product":{"name":"perl-GraphicsMagick-1.2.5-78.72.1.ia64","product_id":"perl-GraphicsMagick-1.2.5-78.72.1.ia64"}}],"category":"architecture","name":"ia64"},{"branches":[{"category":"product_version","name":"GraphicsMagick-1.2.5-78.72.1.ppc64","product":{"name":"GraphicsMagick-1.2.5-78.72.1.ppc64","product_id":"GraphicsMagick-1.2.5-78.72.1.ppc64"}},{"category":"product_version","name":"libGraphicsMagick2-1.2.5-78.72.1.ppc64","product":{"name":"libGraphicsMagick2-1.2.5-78.72.1.ppc64","product_id":"libGraphicsMagick2-1.2.5-78.72.1.ppc64"}},{"category":"product_version","name":"perl-GraphicsMagick-1.2.5-78.72.1.ppc64","product":{"name":"perl-GraphicsMagick-1.2.5-78.72.1.ppc64","product_id":"perl-GraphicsMagick-1.2.5-78.72.1.ppc64"}}],"category":"architecture","name":"ppc64"},{"branches":[{"category":"product_version","name":"GraphicsMagick-1.2.5-78.72.1.s390x","product":{"name":"GraphicsMagick-1.2.5-78.72.1.s390x","product_id":"GraphicsMagick-1.2.5-78.72.1.s390x"}},{"category":"product_version","name":"libGraphicsMagick2-1.2.5-78.72.1.s390x","product":{"name":"libGraphicsMagick2-1.2.5-78.72.1.s390x","product_id":"libGraphicsMagick2-1.2.5-78.72.1.s390x"}},{"category":"product_version","name":"perl-GraphicsMagick-1.2.5-78.72.1.s390x","product":{"name":"perl-GraphicsMagick-1.2.5-78.72.1.s390x","product_id":"perl-GraphicsMagick-1.2.5-78.72.1.s390x"}}],"category":"architecture","name":"s390x"},{"branches":[{"category":"product_version","name":"GraphicsMagick-1.2.5-78.72.1.x86_64","product":{"name":"GraphicsMagick-1.2.5-78.72.1.x86_64","product_id":"GraphicsMagick-1.2.5-78.72.1.x86_64"}},{"category":"product_version","name":"libGraphicsMagick2-1.2.5-78.72.1.x86_64","product":{"name":"libGraphicsMagick2-1.2.5-78.72.1.x86_64","product_id":"libGraphicsMagick2-1.2.5-78.72.1.x86_64"}},{"category":"product_version","name":"perl-GraphicsMagick-1.2.5-78.72.1.x86_64","product":{"name":"perl-GraphicsMagick-1.2.5-78.72.1.x86_64","product_id":"perl-GraphicsMagick-1.2.5-78.72.1.x86_64"}}],"category":"architecture","name":"x86_64"},{"branches":[{"category":"product_name","name":"SUSE Linux Enterprise Software Development Kit 11 SP4","product":{"name":"SUSE Linux Enterprise Software Development Kit 11 SP4","product_id":"SUSE Linux Enterprise Software Development Kit 11 SP4","product_identification_helper":{"cpe":"cpe:/a:suse:sle-sdk:11:sp4"}}},{"category":"product_name","name":"SUSE Studio Onsite 1.3","product":{"name":"SUSE Studio Onsite 1.3","product_id":"SUSE Studio Onsite 1.3","product_identification_helper":{"cpe":"cpe:/o:suse:sle-studioonsite:1.3"}}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"GraphicsMagick-1.2.5-78.72.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4","product_id":"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586"},"product_reference":"GraphicsMagick-1.2.5-78.72.1.i586","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"GraphicsMagick-1.2.5-78.72.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4","product_id":"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64"},"product_reference":"GraphicsMagick-1.2.5-78.72.1.ia64","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"GraphicsMagick-1.2.5-78.72.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4","product_id":"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64"},"product_reference":"GraphicsMagick-1.2.5-78.72.1.ppc64","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"GraphicsMagick-1.2.5-78.72.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4","product_id":"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x"},"product_reference":"GraphicsMagick-1.2.5-78.72.1.s390x","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"GraphicsMagick-1.2.5-78.72.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4","product_id":"SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64"},"product_reference":"GraphicsMagick-1.2.5-78.72.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"libGraphicsMagick2-1.2.5-78.72.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4","product_id":"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586"},"product_reference":"libGraphicsMagick2-1.2.5-78.72.1.i586","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"libGraphicsMagick2-1.2.5-78.72.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4","product_id":"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64"},"product_reference":"libGraphicsMagick2-1.2.5-78.72.1.ia64","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"libGraphicsMagick2-1.2.5-78.72.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4","product_id":"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64"},"product_reference":"libGraphicsMagick2-1.2.5-78.72.1.ppc64","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"libGraphicsMagick2-1.2.5-78.72.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4","product_id":"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x"},"product_reference":"libGraphicsMagick2-1.2.5-78.72.1.s390x","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"libGraphicsMagick2-1.2.5-78.72.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4","product_id":"SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64"},"product_reference":"libGraphicsMagick2-1.2.5-78.72.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"perl-GraphicsMagick-1.2.5-78.72.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4","product_id":"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586"},"product_reference":"perl-GraphicsMagick-1.2.5-78.72.1.i586","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"perl-GraphicsMagick-1.2.5-78.72.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4","product_id":"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64"},"product_reference":"perl-GraphicsMagick-1.2.5-78.72.1.ia64","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"perl-GraphicsMagick-1.2.5-78.72.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4","product_id":"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64"},"product_reference":"perl-GraphicsMagick-1.2.5-78.72.1.ppc64","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"perl-GraphicsMagick-1.2.5-78.72.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4","product_id":"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x"},"product_reference":"perl-GraphicsMagick-1.2.5-78.72.1.s390x","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"perl-GraphicsMagick-1.2.5-78.72.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4","product_id":"SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64"},"product_reference":"perl-GraphicsMagick-1.2.5-78.72.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 11 SP4"},{"category":"default_component_of","full_product_name":{"name":"GraphicsMagick-1.2.5-78.72.1.x86_64 as component of SUSE Studio Onsite 1.3","product_id":"SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64"},"product_reference":"GraphicsMagick-1.2.5-78.72.1.x86_64","relates_to_product_reference":"SUSE Studio Onsite 1.3"},{"category":"default_component_of","full_product_name":{"name":"libGraphicsMagick2-1.2.5-78.72.1.x86_64 as component of SUSE Studio Onsite 1.3","product_id":"SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"},"product_reference":"libGraphicsMagick2-1.2.5-78.72.1.x86_64","relates_to_product_reference":"SUSE Studio Onsite 1.3"}]},"vulnerabilities":[{"cve":"CVE-2018-16323","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2018-16323"}],"notes":[{"category":"general","text":"ReadXBMImage in coders/xbm.c in ImageMagick before 7.0.8-9 leaves data uninitialized when processing an XBM file that has a negative pixel value. If the affected code is used as a library loaded into a process that includes sensitive information, that information sometimes can be leaked via the image data.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2018-16323","url":"https://www.suse.com/security/cve/CVE-2018-16323"},{"category":"external","summary":"SUSE Bug 1106855 for CVE-2018-16323","url":"https://bugzilla.suse.com/1106855"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":4,"baseSeverity":"MEDIUM","vectorString":"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","version":"3.0"},"products":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"threats":[{"category":"impact","date":"2018-10-22T08:16:11Z","details":"low"}],"title":"CVE-2018-16323"},{"cve":"CVE-2018-16640","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2018-16640"}],"notes":[{"category":"general","text":"ImageMagick 7.0.8-5 has a memory leak vulnerability in the function ReadOneJNGImage in coders/png.c.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2018-16640","url":"https://www.suse.com/security/cve/CVE-2018-16640"},{"category":"external","summary":"SUSE Bug 1107619 for CVE-2018-16640","url":"https://bugzilla.suse.com/1107619"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":3.3,"baseSeverity":"LOW","vectorString":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","version":"3.0"},"products":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"threats":[{"category":"impact","date":"2018-10-22T08:16:11Z","details":"low"}],"title":"CVE-2018-16640"},{"cve":"CVE-2018-16642","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2018-16642"}],"notes":[{"category":"general","text":"The function InsertRow in coders/cut.c in ImageMagick 7.0.7-37 allows remote attackers to cause a denial of service via a crafted image file due to an out-of-bounds write.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2018-16642","url":"https://www.suse.com/security/cve/CVE-2018-16642"},{"category":"external","summary":"SUSE Bug 1107616 for CVE-2018-16642","url":"https://bugzilla.suse.com/1107616"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":4.4,"baseSeverity":"MEDIUM","vectorString":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L","version":"3.0"},"products":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"threats":[{"category":"impact","date":"2018-10-22T08:16:11Z","details":"moderate"}],"title":"CVE-2018-16642"},{"cve":"CVE-2018-16643","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2018-16643"}],"notes":[{"category":"general","text":"The functions ReadDCMImage in coders/dcm.c, ReadPWPImage in coders/pwp.c, ReadCALSImage in coders/cals.c, and ReadPICTImage in coders/pict.c in ImageMagick 7.0.8-4 do not check the return value of the fputc function, which allows remote attackers to cause a denial of service via a crafted image file.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2018-16643","url":"https://www.suse.com/security/cve/CVE-2018-16643"},{"category":"external","summary":"SUSE Bug 1107612 for CVE-2018-16643","url":"https://bugzilla.suse.com/1107612"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":3.3,"baseSeverity":"LOW","vectorString":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","version":"3.0"},"products":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"threats":[{"category":"impact","date":"2018-10-22T08:16:11Z","details":"low"}],"title":"CVE-2018-16643"},{"cve":"CVE-2018-16644","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2018-16644"}],"notes":[{"category":"general","text":"There is a missing check for length in the functions ReadDCMImage of coders/dcm.c and ReadPICTImage of coders/pict.c in ImageMagick 7.0.8-11, which allows remote attackers to cause a denial of service via a crafted image.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2018-16644","url":"https://www.suse.com/security/cve/CVE-2018-16644"},{"category":"external","summary":"SUSE Bug 1107609 for CVE-2018-16644","url":"https://bugzilla.suse.com/1107609"},{"category":"external","summary":"SUSE Bug 1107612 for CVE-2018-16644","url":"https://bugzilla.suse.com/1107612"},{"category":"external","summary":"SUSE Bug 1117463 for CVE-2018-16644","url":"https://bugzilla.suse.com/1117463"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":3.3,"baseSeverity":"LOW","vectorString":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","version":"3.0"},"products":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"threats":[{"category":"impact","date":"2018-10-22T08:16:11Z","details":"low"}],"title":"CVE-2018-16644"},{"cve":"CVE-2018-16645","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2018-16645"}],"notes":[{"category":"general","text":"There is an excessive memory allocation issue in the functions ReadBMPImage of coders/bmp.c and ReadDIBImage of coders/dib.c in ImageMagick 7.0.8-11, which allows remote attackers to cause a denial of service via a crafted image file.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2018-16645","url":"https://www.suse.com/security/cve/CVE-2018-16645"},{"category":"external","summary":"SUSE Bug 1107604 for CVE-2018-16645","url":"https://bugzilla.suse.com/1107604"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":3.3,"baseSeverity":"LOW","vectorString":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","version":"3.0"},"products":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"threats":[{"category":"impact","date":"2018-10-22T08:16:11Z","details":"low"}],"title":"CVE-2018-16645"},{"cve":"CVE-2018-16749","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2018-16749"}],"notes":[{"category":"general","text":"In ImageMagick 7.0.7-29 and earlier, a missing NULL check in ReadOneJNGImage in coders/png.c allows an attacker to cause a denial of service (WriteBlob assertion failure and application exit) via a crafted file.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2018-16749","url":"https://www.suse.com/security/cve/CVE-2018-16749"},{"category":"external","summary":"SUSE Bug 1108282 for CVE-2018-16749","url":"https://bugzilla.suse.com/1108282"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":2.8,"baseSeverity":"LOW","vectorString":"CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L","version":"3.0"},"products":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"threats":[{"category":"impact","date":"2018-10-22T08:16:11Z","details":"low"}],"title":"CVE-2018-16749"},{"cve":"CVE-2018-16750","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2018-16750"}],"notes":[{"category":"general","text":"In ImageMagick 7.0.7-29 and earlier, a memory leak in the formatIPTCfromBuffer function in coders/meta.c was found.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2018-16750","url":"https://www.suse.com/security/cve/CVE-2018-16750"},{"category":"external","summary":"SUSE Bug 1108283 for CVE-2018-16750","url":"https://bugzilla.suse.com/1108283"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":3.3,"baseSeverity":"LOW","vectorString":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","version":"3.0"},"products":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"threats":[{"category":"impact","date":"2018-10-22T08:16:11Z","details":"low"}],"title":"CVE-2018-16750"},{"cve":"CVE-2018-17965","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2018-17965"}],"notes":[{"category":"general","text":"ImageMagick 7.0.7-28 has a memory leak vulnerability in WriteSGIImage in coders/sgi.c.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2018-17965","url":"https://www.suse.com/security/cve/CVE-2018-17965"},{"category":"external","summary":"SUSE Bug 1110747 for CVE-2018-17965","url":"https://bugzilla.suse.com/1110747"},{"category":"external","summary":"SUSE Bug 1117463 for CVE-2018-17965","url":"https://bugzilla.suse.com/1117463"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":3.3,"baseSeverity":"LOW","vectorString":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","version":"3.0"},"products":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"threats":[{"category":"impact","date":"2018-10-22T08:16:11Z","details":"low"}],"title":"CVE-2018-17965"},{"cve":"CVE-2018-17966","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2018-17966"}],"notes":[{"category":"general","text":"ImageMagick 7.0.7-28 has a memory leak vulnerability in WritePDBImage in coders/pdb.c.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2018-17966","url":"https://www.suse.com/security/cve/CVE-2018-17966"},{"category":"external","summary":"SUSE Bug 1110746 for CVE-2018-17966","url":"https://bugzilla.suse.com/1110746"},{"category":"external","summary":"SUSE Bug 1117463 for CVE-2018-17966","url":"https://bugzilla.suse.com/1117463"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":3.3,"baseSeverity":"LOW","vectorString":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","version":"3.0"},"products":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"threats":[{"category":"impact","date":"2018-10-22T08:16:11Z","details":"low"}],"title":"CVE-2018-17966"},{"cve":"CVE-2018-18016","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2018-18016"}],"notes":[{"category":"general","text":"ImageMagick 7.0.7-28 has a memory leak vulnerability in WritePCXImage in coders/pcx.c.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2018-18016","url":"https://www.suse.com/security/cve/CVE-2018-18016"},{"category":"external","summary":"SUSE Bug 1111072 for CVE-2018-18016","url":"https://bugzilla.suse.com/1111072"},{"category":"external","summary":"SUSE Bug 1117463 for CVE-2018-18016","url":"https://bugzilla.suse.com/1117463"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":3.3,"baseSeverity":"LOW","vectorString":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","version":"3.0"},"products":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"threats":[{"category":"impact","date":"2018-10-22T08:16:11Z","details":"low"}],"title":"CVE-2018-18016"},{"cve":"CVE-2018-18024","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2018-18024"}],"notes":[{"category":"general","text":"In ImageMagick 7.0.8-13 Q16, there is an infinite loop in the ReadBMPImage function of the coders/bmp.c file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2018-18024","url":"https://www.suse.com/security/cve/CVE-2018-18024"},{"category":"external","summary":"SUSE Bug 1111069 for CVE-2018-18024","url":"https://bugzilla.suse.com/1111069"},{"category":"external","summary":"SUSE Bug 1117463 for CVE-2018-18024","url":"https://bugzilla.suse.com/1117463"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":3.3,"baseSeverity":"LOW","vectorString":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L","version":"3.0"},"products":["SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:libGraphicsMagick2-1.2.5-78.72.1.x86_64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.i586","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ia64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.ppc64","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.s390x","SUSE Linux Enterprise Software Development Kit 11 SP4:perl-GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:GraphicsMagick-1.2.5-78.72.1.x86_64","SUSE Studio Onsite 1.3:libGraphicsMagick2-1.2.5-78.72.1.x86_64"]}],"threats":[{"category":"impact","date":"2018-10-22T08:16:11Z","details":"low"}],"title":"CVE-2018-18024"}]}