A flaw was found in ImageMagick version 7.0.7-28 contains a memory leak in ReadYCBCRImage in coders/ycbcr.c. References: https://github.com/ImageMagick/ImageMagick/issues/1054
Created ImageMagick tracking bugs for this issue: Affects: fedora-all [bug 1577400]
Doesn't look like it's leaking canvas_image but definitely leaking quantum_info.
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2020:1180 https://access.redhat.com/errata/RHSA-2020:1180
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2018-10805