CVE-2016-3991 (retired)

Heap-based buffer overflow in the loadImage function in the tiffcrop tool
in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of
service (out-of-bounds write) or execute arbitrary code via a crafted TIFF
image with zero tiles.
 tyhicks> Rating issue as low priority since it is in a utility rather
  than the library
More Information

Updated: 2019-09-19 15:58:06 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)