CVE-2017-15930 (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15930): In ReadOneJNGImage in coders/png.c in GraphicsMagick 1.3.26, a Null Pointer Dereference occurs while transferring JPEG scanlines, related to a PixelPacket pointer. References: http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset;node=6fc54b6d2be8 http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset;node=da135eaedc3b https://sourceforge.net/p/graphicsmagick/bugs/518/
cleanup will be tracked in bug #640690 GLSA Vote: No