In ImageMagick the ReadPALMImage function in palm.c allows attackers to cause a denial of service (memory leak) via a crafted file. Upstream issue: https://github.com/ImageMagick/ImageMagick/issues/459 Upstream patch: https://github.com/ImageMagick/ImageMagick/commit/3a7e63bc27e3e84cec4617125fa7641d77b90e65