CVE-2017-11139 (https://nvd.nist.gov/vuln/detail/CVE-2017-11139): GraphicsMagick 1.3.26 has double free vulnerabilities in the ReadOneJNGImage() function in coders/png.c. @maintainer(s): after the bump, in case we need to stabilize the package, please let us know if it is ready for the stabilization or not.
Downgraded to B3. No PoC for ACE/RCE. @maintainer(s), please clean the vulnerable version.
cleanup will be tracked in bug #640690 GLSA Vote: No