Launchpad.net

CVE 2016-5315

The setByteArray function in tif_dir.c in libtiff 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted tiff image.

See the CVE page on Mitre.org for more details.

References