A flaw was found in ImageMagick 7.0.8-4, there is a memory leak in the XMagickCommand function in MagickCore/animate.c. References: https://github.com/ImageMagick/ImageMagick/issues/1195 Upstream Patch: https://github.com/ImageMagick/ImageMagick/commit/4ab4849d667e26df0e63ece9d63ae23bc7ab0fa1 https://github.com/ImageMagick/ImageMagick6/commit/6ce6d25b47caf9b6b2979a510b6202ce0f3dd2d4
Created ImageMagick tracking bugs for this issue: Affects: fedora-all [bug 1598472]
A memory leak is present in magick/animate.c:XMagickCommand, where the memory for an array of strings, named `filelist`, is allocated but not correctly released in case the function ExpandFilenames return an error code.
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2020:1180 https://access.redhat.com/errata/RHSA-2020:1180
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2018-13153