ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_decode in coders/sixel.c. A local attacker might use this to crash the application. Upstream issue: https://github.com/ImageMagick/ImageMagick/issues/722 Upstream patch: https://github.com/ImageMagick/ImageMagick/commit/90b301db18434b2c2228776d06c2898b5fed74f0
According to upstream changelog, the support for sixel coder was added in version 6.8.9-9.