K0Keoyo

**Name of the Vulnerable Software and Affected Versions** ImageMagick version 7.0.6-4 **Description** The issue is related to the WritePICONImage function in coders/xpm.c, which is part of the ImageMagick console graphics editor. It is caused by a buffer overflow in memory. Exploitation of this issue can allow a remote attacker to cause a denial of service, resulting in a memory leak, by using a specially crafted file. **Recommendations** For ImageMagick version 7.0.6-4, consider disabling the WritePICONImage function in coders/xpm.c as a temporary workaround until a patch is available. Restrict access to the `coders/xpm.c` module to minimize the risk of exploitation. Avoid using the WritePICONImage function with untrusted input files until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** ImageMagick versions 6.9.9-4 through 7.0.6-4 **Description** The issue is related to the `ReadOneJNGImage` function in `coders/png.c`, which can cause a denial of service due to a NULL pointer dereference when processing a crafted file. This can be exploited by remote attackers to disrupt service. **Recommendations** For ImageMagick versions 6.9.9-4 through 7.0.6-4, consider disabling the `ReadOneJNGImage` function as a temporary workaround until a patch is available. Restrict access to potentially vulnerable image processing functions to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ImageMagick versions 6.9.9-3 through 7.0.6-3 ImageMagick version 7.x **Description** The issue is related to memory leaks in the ReadMATImage function, specifically involving the `quantum info` and `clone info` data structures. This can potentially allow a remote attacker to cause memory loss. **Recommendations** For ImageMagick versions 6.9.9-3 through 7.0.6-3, consider updating to a version that addresses the memory leaks in the ReadMATImage function. For ImageMagick version 7.x, consider updating to a version that addresses the memory leaks in the ReadMATImage function. As a temporary workaround, consider restricting access to the ReadMATImage function in the coders/mat.c file until a patch is available.