CVE-2017-12935: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-12935 The ReadMNGImage function in coders/png.c in GraphicsMagick 1.3.26 mishandles large MNG images, leading to an invalid memory read in the SetImageColorCallBack function in magick/image.c CVE-2017-12936: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-12936 The ReadWMFImage function in coders/wmf.c in GraphicsMagick 1.3.26 has a use-after-free issue for data associated with exception reporting. CVE-2017-12937: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-12937 The ReadSUNImage function in coders/sun.c in GraphicsMagick 1.3.26 has a colormap heap-based buffer over-read
already reported *** This bug has been marked as a duplicate of bug 628188 ***
Ago, Thanks, realized it was duplicate a bit late in the reporting.