libtiff 4.5.0 is vulnerable to Buffer Overflow in uv_encode() when libtiff reads a corrupted little-endian TIFF file and specifies the output to be big-endian.
A flaw was found in libtiff. A specially crafted tiff file can lead to a segmentation fault due to an out-of-bounds read in the uv_encode function in libtiff/tif_luv.c, resulting in a denial of service.
This update for tiff fixes the following issues. Fixed a NULL pointer dereference in raw2tiff. Fixed an integer overflow in raw2tiff. Fixed a memory leak in tiffcrop. Fixed an out of bounds read in tiffcp. Fixed an out of bounds read when transforming a little-endian file to a big-endian output. Fixed a NULL pointer dereference while encoding FAX3 files. Fixed an undefined behavior issue when doing pointer arithmetic on a NULL pointer. Fixed a NULL pointer dereference while opening a file in an inaccessible path. Fixed a buffer overflow in tiffcrop.
