tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (integer underflow and heap-based buffer under-read) or possibly have unspecified other impact via a crafted TIFF image, related to "READ of size 78490" and libtiff/tif_unix.c:115:23.
tools/tiffcp.c en LibTIFF 4.0.7 permite a los atacantes remotos causar una denegación de servicio (desbordamiento inferior de enteros y lectura inferior de búfer basado en memoria dinámica) o posiblemente tener otro impacto no especificado a través de una imagen TIFF manipulada, relacionado con "READ de tamaño 78490" y libtiff/tif_unix.c:115:23.
It was discovered that LibTIFF incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user privileges.