In LibTIFF 4.0.7, the program processes BMP images without verifying that biWidth and biHeight in the bitmap-information header match the actual input, leading to a heap-based buffer over-read in bmp2tiff. Upstream bug: http://bugzilla.maptools.org/show_bug.cgi?id=2690
Created libtiff tracking bugs for this issue: Affects: fedora-all [bug 1456758] Created mingw-libtiff tracking bugs for this issue: Affects: epel-7 [bug 1456757] Affects: fedora-all [bug 1456759]