CVEs have been assigned for a security issue fixed upstream in imagemagick: http://openwall.com/lists/oss-security/2016/06/25/3 They were fixed in 6.9.4-10 (already in Cauldron).
Rolled into the Bug 18598 update. *** This bug has been marked as a duplicate of bug 18598 ***
Status: NEW => RESOLVEDResolution: (none) => DUPLICATE