usn-8069-1
Vulnerability from osv_ubuntu
It was discovered that ImageMagick did not properly decode certain SUN image files. An attacker could use this issue to cause ImageMagick to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2026-25897)
It was discovered that ImageMagick did not properly validate pixel index values when writing UIL and XPM image files. An attacker could use this issue to cause ImageMagick to crash, resulting in a denial of service, or possibly obtain sensitive information. (CVE-2026-25898)
It was discovered that ImageMagick's MSL decoder did not properly handle certain attribute values. An attacker could use this issue to cause ImageMagick to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2026-25968)
It was discovered that ImageMagick's MSL decoder did not properly handle memory when processing certain script elements. An attacker could use this issue to cause ImageMagick to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2026-25983)
It was discovered that ImageMagick did not properly handle certain YUV image files. An attacker could use this issue to cause ImageMagick to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2026-25986)
It was discovered that ImageMagick did not properly handle certain MAP image files. An attacker could use this issue to cause ImageMagick to crash, resulting in a denial of service, or possibly obtain sensitive information. (CVE-2026-25987)
It was discovered that ImageMagick's PCD decoder did not properly process Huffman-coded data. An attacker could use this issue to cause ImageMagick to crash, resulting in a denial of service, or possibly obtain sensitive information. (CVE-2026-26284)
{
"affected": [
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2026-25897",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25898",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25968",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25983",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25986",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25987",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-26284",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:Pro:14.04:LTS"
}
},
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro with Legacy support add-on: https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "imagemagick",
"binary_version": "8:6.7.7.10-6ubuntu3.13+esm19"
},
{
"binary_name": "imagemagick-common",
"binary_version": "8:6.7.7.10-6ubuntu3.13+esm19"
},
{
"binary_name": "libmagick++5",
"binary_version": "8:6.7.7.10-6ubuntu3.13+esm19"
},
{
"binary_name": "libmagickcore5",
"binary_version": "8:6.7.7.10-6ubuntu3.13+esm19"
},
{
"binary_name": "libmagickcore5-extra",
"binary_version": "8:6.7.7.10-6ubuntu3.13+esm19"
},
{
"binary_name": "libmagickwand5",
"binary_version": "8:6.7.7.10-6ubuntu3.13+esm19"
},
{
"binary_name": "perlmagick",
"binary_version": "8:6.7.7.10-6ubuntu3.13+esm19"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "imagemagick",
"purl": "pkg:deb/ubuntu/imagemagick@8:6.7.7.10-6ubuntu3.13+esm19?arch=source\u0026distro=esm-infra-legacy/trusty"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "8:6.7.7.10-6ubuntu3.13+esm19"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"8:6.7.7.10-5ubuntu3",
"8:6.7.7.10-5ubuntu4",
"8:6.7.7.10-6ubuntu1",
"8:6.7.7.10-6ubuntu2",
"8:6.7.7.10-6ubuntu3",
"8:6.7.7.10-6ubuntu3.1",
"8:6.7.7.10-6ubuntu3.2",
"8:6.7.7.10-6ubuntu3.3",
"8:6.7.7.10-6ubuntu3.4",
"8:6.7.7.10-6ubuntu3.5",
"8:6.7.7.10-6ubuntu3.6",
"8:6.7.7.10-6ubuntu3.7",
"8:6.7.7.10-6ubuntu3.8",
"8:6.7.7.10-6ubuntu3.9",
"8:6.7.7.10-6ubuntu3.11",
"8:6.7.7.10-6ubuntu3.12",
"8:6.7.7.10-6ubuntu3.13",
"8:6.7.7.10-6ubuntu3.13+esm1",
"8:6.7.7.10-6ubuntu3.13+esm2",
"8:6.7.7.10-6ubuntu3.13+esm3",
"8:6.7.7.10-6ubuntu3.13+esm4",
"8:6.7.7.10-6ubuntu3.13+esm5",
"8:6.7.7.10-6ubuntu3.13+esm6",
"8:6.7.7.10-6ubuntu3.13+esm7",
"8:6.7.7.10-6ubuntu3.13+esm8",
"8:6.7.7.10-6ubuntu3.13+esm9",
"8:6.7.7.10-6ubuntu3.13+esm10",
"8:6.7.7.10-6ubuntu3.13+esm11",
"8:6.7.7.10-6ubuntu3.13+esm12",
"8:6.7.7.10-6ubuntu3.13+esm13",
"8:6.7.7.10-6ubuntu3.13+esm14",
"8:6.7.7.10-6ubuntu3.13+esm15",
"8:6.7.7.10-6ubuntu3.13+esm16",
"8:6.7.7.10-6ubuntu3.13+esm17",
"8:6.7.7.10-6ubuntu3.13+esm18"
]
},
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2026-25897",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25898",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25968",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25983",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25986",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25987",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-26284",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:Pro:16.04:LTS"
}
},
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "imagemagick",
"binary_version": "8:6.8.9.9-7ubuntu5.16+esm18"
},
{
"binary_name": "imagemagick-6.q16",
"binary_version": "8:6.8.9.9-7ubuntu5.16+esm18"
},
{
"binary_name": "imagemagick-common",
"binary_version": "8:6.8.9.9-7ubuntu5.16+esm18"
},
{
"binary_name": "libimage-magick-perl",
"binary_version": "8:6.8.9.9-7ubuntu5.16+esm18"
},
{
"binary_name": "libimage-magick-q16-perl",
"binary_version": "8:6.8.9.9-7ubuntu5.16+esm18"
},
{
"binary_name": "libmagick++-6-headers",
"binary_version": "8:6.8.9.9-7ubuntu5.16+esm18"
},
{
"binary_name": "libmagick++-6.q16-5v5",
"binary_version": "8:6.8.9.9-7ubuntu5.16+esm18"
},
{
"binary_name": "libmagickcore-6-arch-config",
"binary_version": "8:6.8.9.9-7ubuntu5.16+esm18"
},
{
"binary_name": "libmagickcore-6-headers",
"binary_version": "8:6.8.9.9-7ubuntu5.16+esm18"
},
{
"binary_name": "libmagickcore-6.q16-2",
"binary_version": "8:6.8.9.9-7ubuntu5.16+esm18"
},
{
"binary_name": "libmagickcore-6.q16-2-extra",
"binary_version": "8:6.8.9.9-7ubuntu5.16+esm18"
},
{
"binary_name": "libmagickwand-6-headers",
"binary_version": "8:6.8.9.9-7ubuntu5.16+esm18"
},
{
"binary_name": "libmagickwand-6.q16-2",
"binary_version": "8:6.8.9.9-7ubuntu5.16+esm18"
},
{
"binary_name": "perlmagick",
"binary_version": "8:6.8.9.9-7ubuntu5.16+esm18"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "imagemagick",
"purl": "pkg:deb/ubuntu/imagemagick@8:6.8.9.9-7ubuntu5.16+esm18?arch=source\u0026distro=esm-infra/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "8:6.8.9.9-7ubuntu5.16+esm18"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"8:6.8.9.9-5ubuntu2",
"8:6.8.9.9-6",
"8:6.8.9.9-6build1",
"8:6.8.9.9-7",
"8:6.8.9.9-7ubuntu1",
"8:6.8.9.9-7ubuntu2",
"8:6.8.9.9-7ubuntu3",
"8:6.8.9.9-7ubuntu4",
"8:6.8.9.9-7ubuntu5",
"8:6.8.9.9-7ubuntu5.1",
"8:6.8.9.9-7ubuntu5.2",
"8:6.8.9.9-7ubuntu5.3",
"8:6.8.9.9-7ubuntu5.4",
"8:6.8.9.9-7ubuntu5.5",
"8:6.8.9.9-7ubuntu5.6",
"8:6.8.9.9-7ubuntu5.7",
"8:6.8.9.9-7ubuntu5.8",
"8:6.8.9.9-7ubuntu5.9",
"8:6.8.9.9-7ubuntu5.11",
"8:6.8.9.9-7ubuntu5.12",
"8:6.8.9.9-7ubuntu5.13",
"8:6.8.9.9-7ubuntu5.14",
"8:6.8.9.9-7ubuntu5.15",
"8:6.8.9.9-7ubuntu5.16",
"8:6.8.9.9-7ubuntu5.16+esm1",
"8:6.8.9.9-7ubuntu5.16+esm2",
"8:6.8.9.9-7ubuntu5.16+esm3",
"8:6.8.9.9-7ubuntu5.16+esm4",
"8:6.8.9.9-7ubuntu5.16+esm5",
"8:6.8.9.9-7ubuntu5.16+esm6",
"8:6.8.9.9-7ubuntu5.16+esm7",
"8:6.8.9.9-7ubuntu5.16+esm8",
"8:6.8.9.9-7ubuntu5.16+esm9",
"8:6.8.9.9-7ubuntu5.16+esm10",
"8:6.8.9.9-7ubuntu5.16+esm11",
"8:6.8.9.9-7ubuntu5.16+esm12",
"8:6.8.9.9-7ubuntu5.16+esm13",
"8:6.8.9.9-7ubuntu5.16+esm14",
"8:6.8.9.9-7ubuntu5.16+esm15",
"8:6.8.9.9-7ubuntu5.16+esm16",
"8:6.8.9.9-7ubuntu5.16+esm17"
]
},
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2026-25897",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25898",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25968",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25983",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25986",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25987",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-26284",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:Pro:18.04:LTS"
}
},
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "imagemagick",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "imagemagick-6-common",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "imagemagick-6.q16",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "imagemagick-6.q16hdri",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "imagemagick-common",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "libimage-magick-perl",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "libimage-magick-q16-perl",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "libimage-magick-q16hdri-perl",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "libmagick++-6-headers",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "libmagick++-6.q16-7",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "libmagick++-6.q16hdri-7",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "libmagickcore-6-arch-config",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "libmagickcore-6-headers",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "libmagickcore-6.q16-3",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "libmagickcore-6.q16-3-extra",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "libmagickcore-6.q16hdri-3",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "libmagickcore-6.q16hdri-3-extra",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "libmagickwand-6-headers",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "libmagickwand-6.q16-3",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "libmagickwand-6.q16hdri-3",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
},
{
"binary_name": "perlmagick",
"binary_version": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:18.04:LTS",
"name": "imagemagick",
"purl": "pkg:deb/ubuntu/imagemagick@8:6.9.7.4+dfsg-16ubuntu6.15+esm10?arch=source\u0026distro=esm-infra/bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "8:6.9.7.4+dfsg-16ubuntu6.15+esm10"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"8:6.9.7.4+dfsg-16ubuntu2",
"8:6.9.7.4+dfsg-16ubuntu3",
"8:6.9.7.4+dfsg-16ubuntu4",
"8:6.9.7.4+dfsg-16ubuntu5",
"8:6.9.7.4+dfsg-16ubuntu6",
"8:6.9.7.4+dfsg-16ubuntu6.2",
"8:6.9.7.4+dfsg-16ubuntu6.3",
"8:6.9.7.4+dfsg-16ubuntu6.4",
"8:6.9.7.4+dfsg-16ubuntu6.7",
"8:6.9.7.4+dfsg-16ubuntu6.8",
"8:6.9.7.4+dfsg-16ubuntu6.9",
"8:6.9.7.4+dfsg-16ubuntu6.11",
"8:6.9.7.4+dfsg-16ubuntu6.12",
"8:6.9.7.4+dfsg-16ubuntu6.13",
"8:6.9.7.4+dfsg-16ubuntu6.14",
"8:6.9.7.4+dfsg-16ubuntu6.15",
"8:6.9.7.4+dfsg-16ubuntu6.15+esm1",
"8:6.9.7.4+dfsg-16ubuntu6.15+esm2",
"8:6.9.7.4+dfsg-16ubuntu6.15+esm3",
"8:6.9.7.4+dfsg-16ubuntu6.15+esm4",
"8:6.9.7.4+dfsg-16ubuntu6.15+esm5",
"8:6.9.7.4+dfsg-16ubuntu6.15+esm6",
"8:6.9.7.4+dfsg-16ubuntu6.15+esm7",
"8:6.9.7.4+dfsg-16ubuntu6.15+esm8",
"8:6.9.7.4+dfsg-16ubuntu6.15+esm9"
]
},
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2026-25897",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25898",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25968",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25983",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25986",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25987",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-26284",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:Pro:20.04:LTS"
}
},
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "imagemagick",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "imagemagick-6-common",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "imagemagick-6.q16",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "imagemagick-6.q16hdri",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "imagemagick-common",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "libimage-magick-perl",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "libimage-magick-q16-perl",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "libimage-magick-q16hdri-perl",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "libmagick++-6-headers",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "libmagick++-6.q16-8",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "libmagick++-6.q16hdri-8",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "libmagickcore-6-arch-config",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "libmagickcore-6-headers",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "libmagickcore-6.q16-6",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "libmagickcore-6.q16-6-extra",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "libmagickcore-6.q16hdri-6",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "libmagickcore-6.q16hdri-6-extra",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "libmagickwand-6-headers",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "libmagickwand-6.q16-6",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "libmagickwand-6.q16hdri-6",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
},
{
"binary_name": "perlmagick",
"binary_version": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:20.04:LTS",
"name": "imagemagick",
"purl": "pkg:deb/ubuntu/imagemagick@8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8?arch=source\u0026distro=esm-apps/focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "8:6.9.10.23+dfsg-2.1ubuntu11.11+esm8"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"8:6.9.10.23+dfsg-2.1ubuntu3",
"8:6.9.10.23+dfsg-2.1ubuntu8",
"8:6.9.10.23+dfsg-2.1ubuntu9",
"8:6.9.10.23+dfsg-2.1ubuntu10",
"8:6.9.10.23+dfsg-2.1ubuntu11",
"8:6.9.10.23+dfsg-2.1ubuntu11.1",
"8:6.9.10.23+dfsg-2.1ubuntu11.2",
"8:6.9.10.23+dfsg-2.1ubuntu11.4",
"8:6.9.10.23+dfsg-2.1ubuntu11.4+esm1",
"8:6.9.10.23+dfsg-2.1ubuntu11.5",
"8:6.9.10.23+dfsg-2.1ubuntu11.6",
"8:6.9.10.23+dfsg-2.1ubuntu11.6+esm1",
"8:6.9.10.23+dfsg-2.1ubuntu11.7",
"8:6.9.10.23+dfsg-2.1ubuntu11.7+esm1",
"8:6.9.10.23+dfsg-2.1ubuntu11.9",
"8:6.9.10.23+dfsg-2.1ubuntu11.9+esm1",
"8:6.9.10.23+dfsg-2.1ubuntu11.9+esm2",
"8:6.9.10.23+dfsg-2.1ubuntu11.10",
"8:6.9.10.23+dfsg-2.1ubuntu11.10+esm1",
"8:6.9.10.23+dfsg-2.1ubuntu11.11",
"8:6.9.10.23+dfsg-2.1ubuntu11.11+esm1",
"8:6.9.10.23+dfsg-2.1ubuntu11.11+esm2",
"8:6.9.10.23+dfsg-2.1ubuntu11.11+esm3",
"8:6.9.10.23+dfsg-2.1ubuntu11.11+esm4",
"8:6.9.10.23+dfsg-2.1ubuntu11.11+esm5",
"8:6.9.10.23+dfsg-2.1ubuntu11.11+esm6",
"8:6.9.10.23+dfsg-2.1ubuntu11.11+esm7"
]
},
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2026-25897",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25898",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25968",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25983",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25986",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25987",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-26284",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:Pro:22.04:LTS"
}
},
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "imagemagick",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "imagemagick-6-common",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "imagemagick-6.q16",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "imagemagick-6.q16hdri",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "imagemagick-common",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "libimage-magick-perl",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "libimage-magick-q16-perl",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "libimage-magick-q16hdri-perl",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "libmagick++-6-headers",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "libmagick++-6.q16-8",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "libmagick++-6.q16hdri-8",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "libmagickcore-6-arch-config",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "libmagickcore-6-headers",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "libmagickcore-6.q16-6",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "libmagickcore-6.q16-6-extra",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "libmagickcore-6.q16hdri-6",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "libmagickcore-6.q16hdri-6-extra",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "libmagickwand-6-headers",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "libmagickwand-6.q16-6",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "libmagickwand-6.q16hdri-6",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
},
{
"binary_name": "perlmagick",
"binary_version": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:22.04:LTS",
"name": "imagemagick",
"purl": "pkg:deb/ubuntu/imagemagick@8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8?arch=source\u0026distro=esm-apps/jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm8"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"8:6.9.11.60+dfsg-1ubuntu1",
"8:6.9.11.60+dfsg-1.3",
"8:6.9.11.60+dfsg-1.3build1",
"8:6.9.11.60+dfsg-1.3build2",
"8:6.9.11.60+dfsg-1.3ubuntu0.22.04.1",
"8:6.9.11.60+dfsg-1.3ubuntu0.22.04.1+esm1",
"8:6.9.11.60+dfsg-1.3ubuntu0.22.04.2",
"8:6.9.11.60+dfsg-1.3ubuntu0.22.04.2+esm1",
"8:6.9.11.60+dfsg-1.3ubuntu0.22.04.3",
"8:6.9.11.60+dfsg-1.3ubuntu0.22.04.3+esm1",
"8:6.9.11.60+dfsg-1.3ubuntu0.22.04.3+esm2",
"8:6.9.11.60+dfsg-1.3ubuntu0.22.04.3+esm3",
"8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5",
"8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm1",
"8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm2",
"8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm3",
"8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm4",
"8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm5",
"8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm6",
"8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5+esm7"
]
},
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2026-25897",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25898",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25968",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25983",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25986",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-25987",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2026-26284",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:Pro:24.04:LTS"
}
},
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "imagemagick",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
},
{
"binary_name": "imagemagick-6-common",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
},
{
"binary_name": "imagemagick-6.q16",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
},
{
"binary_name": "imagemagick-6.q16hdri",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
},
{
"binary_name": "libimage-magick-perl",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
},
{
"binary_name": "libimage-magick-q16-perl",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
},
{
"binary_name": "libimage-magick-q16hdri-perl",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
},
{
"binary_name": "libmagick++-6-headers",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
},
{
"binary_name": "libmagick++-6.q16-9t64",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
},
{
"binary_name": "libmagick++-6.q16hdri-9t64",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
},
{
"binary_name": "libmagickcore-6-arch-config",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
},
{
"binary_name": "libmagickcore-6-headers",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
},
{
"binary_name": "libmagickcore-6.q16-7-extra",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
},
{
"binary_name": "libmagickcore-6.q16-7t64",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
},
{
"binary_name": "libmagickcore-6.q16hdri-7-extra",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
},
{
"binary_name": "libmagickcore-6.q16hdri-7t64",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
},
{
"binary_name": "libmagickwand-6-headers",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
},
{
"binary_name": "libmagickwand-6.q16-7t64",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
},
{
"binary_name": "libmagickwand-6.q16hdri-7t64",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
},
{
"binary_name": "perlmagick",
"binary_version": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:24.04:LTS",
"name": "imagemagick",
"purl": "pkg:deb/ubuntu/imagemagick@8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7?arch=source\u0026distro=esm-apps/noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm7"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"8:6.9.11.60+dfsg-1.6ubuntu1",
"8:6.9.12.98+dfsg1-5",
"8:6.9.12.98+dfsg1-5.2build1",
"8:6.9.12.98+dfsg1-5.2build2",
"8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm1",
"8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm2",
"8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm3",
"8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm4",
"8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm5",
"8:6.9.12.98+dfsg1-5.2ubuntu0.1~esm6"
]
}
],
"aliases": [],
"details": "It was discovered that ImageMagick did not properly decode certain SUN\nimage files. An attacker could use this issue to cause ImageMagick to crash,\nresulting in a denial of service, or possibly execute arbitrary code.\n(CVE-2026-25897)\n\nIt was discovered that ImageMagick did not properly validate pixel index\nvalues when writing UIL and XPM image files. An attacker could use this issue\nto cause ImageMagick to crash, resulting in a denial of service, or possibly\nobtain sensitive information. (CVE-2026-25898)\n\nIt was discovered that ImageMagick\u0027s MSL decoder did not properly handle\ncertain attribute values. An attacker could use this issue to cause ImageMagick\nto crash, resulting in a denial of service, or possibly execute arbitrary code.\n(CVE-2026-25968)\n\nIt was discovered that ImageMagick\u0027s MSL decoder did not properly handle memory\nwhen processing certain script elements. An attacker could use this issue to\ncause ImageMagick to crash, resulting in a denial of service, or possibly\nexecute arbitrary code. (CVE-2026-25983)\n\nIt was discovered that ImageMagick did not properly handle certain YUV image\nfiles. An attacker could use this issue to cause ImageMagick to crash,\nresulting in a denial of service, or possibly execute arbitrary code.\n(CVE-2026-25986)\n\nIt was discovered that ImageMagick did not properly handle certain MAP image\nfiles. An attacker could use this issue to cause ImageMagick to crash,\nresulting in a denial of service, or possibly obtain sensitive information.\n(CVE-2026-25987)\n\nIt was discovered that ImageMagick\u0027s PCD decoder did not properly process\nHuffman-coded data. An attacker could use this issue to cause ImageMagick to\ncrash, resulting in a denial of service, or possibly obtain sensitive\ninformation. (CVE-2026-26284)",
"id": "USN-8069-1",
"modified": "2026-06-25T10:47:32Z",
"published": "2026-03-04T12:11:29Z",
"references": [
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-8069-1"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2026-25897"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2026-25898"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2026-25968"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2026-25983"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2026-25986"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2026-25987"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2026-26284"
}
],
"related": [],
"schema_version": "1.7.0",
"summary": "imagemagick vulnerabilities",
"upstream": [
"UBUNTU-CVE-2026-25897",
"UBUNTU-CVE-2026-25898",
"UBUNTU-CVE-2026-25968",
"UBUNTU-CVE-2026-25983",
"UBUNTU-CVE-2026-25986",
"UBUNTU-CVE-2026-25987",
"UBUNTU-CVE-2026-26284"
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.