Littleputao

**Name of the Vulnerable Software and Affected Versions** ImageMagick version 7.0.7-17 Q16 **Description** The issue concerns memory leaks in the ReadPATTERNImage function located in coders/pattern.c. **Recommendations** For ImageMagick version 7.0.7-17 Q16, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** ImageMagick version 7.0.7-17 Q16 **Description** The issue is related to a heap-based buffer over-read in the ReadSIXELImage function in coders/sixel.c, which is connected to the sixel decode function. This can potentially allow a remote attacker to cause a denial of service or execute arbitrary code. **Recommendations** For ImageMagick version 7.0.7-17 Q16, consider disabling the ReadSIXELImage function in coders/sixel.c as a temporary workaround until a patch is available. Restrict access to the sixel decode function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: ImageMagick version 7.0.7-12 Q16 Description: The issue concerns memory leaks in the MontageImageCommand function, located in MagickWand/montage.c. Recommendations: For ImageMagick version 7.0.7-12 Q16, consider updating to a newer version that addresses the memory leaks in the MontageImageCommand function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.