Kyeongseok Yang

**Name of the Vulnerable Software and Affected Versions** ImageMagick version 7.0.7-22 **Description** A stack-based buffer over-read in the ComputeResizeImage function in the MagickCore/accelerate.c file allows a remote attacker to cause a denial of service, resulting in an application crash, via a maliciously crafted pict file. **Recommendations** For ImageMagick version 7.0.7-22, consider updating to a newer version that contains a fix for this issue, as using a maliciously crafted pict file can cause the application to crash.

**Name of the Vulnerable Software and Affected Versions** ImageMagick versions prior to 7.0.7-23 **Description** The issue is related to a memory leak in the ReadDCMImage function. This function is located in coders/dcm.c. The memory leak occurs because the `redmap`, `greenmap`, and `bluemap` variables can be overwritten by new pointers, causing the previous pointers to be lost. This allows remote attackers to cause a denial of service. **Recommendations** For versions prior to 7.0.7-23, update to version 7.0.7-23 or later to resolve the issue.