In ImageMagick 7.0.6-6, a memory leak vulnerability was found in the function formatIPTC in coders/meta.c, which allows attackers to cause a denial of service (WriteMETAImage memory consumption) via a crafted file.
CVE Details: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-13062
@maintainer(s), please test and follow procedure to stabilized if needed and close on report, thank you.
Gentoo Security Scout
Fixed in Gentoo via https://github.com/gentoo/gentoo/commit/c1a4d3964144758b282be963b36aaddcef3a4db8#diff-c3da9b5318c1a67d6927fb8032d46fe5
This issue was resolved and addressed in
GLSA 201711-07 at https://security.gentoo.org/glsa/201711-07
by GLSA coordinator Aaron Bauman (b-man).