The ProcessMSLScript function in coders/msl.c in ImageMagick before 6.9.9-5
and 7.x before 7.0.6-5 allows remote attackers to cause a denial of service
(memory leak) via a crafted file, related to the WriteMSLImage function.
The ReadMATImage function in coders/mat.c in ImageMagick through 6.9.9-3 and
7.x through 7.0.6-3 has memory leaks involving the quantum_info and
clone_info data structures.
@Maintainers stable version is affected, consider to stabilize a more recent version. Call for stabilization when ready please.
In repository since https://github.com/gentoo/gentoo/commit/e1658f8bb1511ac66fe7dc2a1d00cfae4be4f43a#diff-c3da9b5318c1a67d6927fb8032d46fe5
This issue was resolved and addressed in
GLSA 201711-07 at https://security.gentoo.org/glsa/201711-07
by GLSA coordinator Aaron Bauman (b-man).