This update to tiff 4.0.6 fixes the following issues:
CVE-2015-7554: Out-of-bounds write in the thumbnail and tiffcmp tools allowed attacker to cause a denial of service or have unspecified further impact (bsc#960341)
bsc#942690: potential out-of-bound write in NeXTDecode() (#2508)