Description: The ReadOneJNGImage function in coders/png.c in ImageMagick 6.9.9-4 and 7.0.6-4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
From the new URL:
A CVE will have to say bug was introduced in 220.127.116.11 and 7.0.6-4, fixed in 6.9.9-5 and 7.0.6-5.
those versions were never stable but even in the case they were, they are already fixed.
Could you please confirm the new whiteboard and proceed to add the CVE with CVETool to be able to close the report?
Gentoo Security Padawan