CVE-2017-12140 (https://nvd.nist.gov/vuln/detail/CVE-2017-12140): The ReadDCMImage function in coders\dcm.c in ImageMagick 7.0.6-1 has an integer signedness error leading to excessive memory consumption via a crafted DCM file. References: https://github.com/ImageMagick/ImageMagick/issues/533 Commit: https://github.com/ImageMagick/ImageMagick/commit/94933146cb2d9d95889a385f08d5eb5f92d4e3cd
Fixed in Gentoo via https://github.com/gentoo/gentoo/commit/86aa55df9beca13b91c1f543d0f4426d414da211#diff-c3da9b5318c1a67d6927fb8032d46fe5
Added to existing GLSA request.
This issue was resolved and addressed in GLSA 201711-07 at https://security.gentoo.org/glsa/201711-07 by GLSA coordinator Aaron Bauman (b-man).