The TIFFFetchNormalTag function in LibTiff 4.0.6 allows remote attackers to cause a denial of service (out-of-bounds read) via crafted TIFFSETGETC16ASCII or TIFFSETGETC32_ASCII tag values.
{ "urgency": "not yet assigned" }