A bug was fixed upstream where a malformed tiff image can cause libtiff to crash due to an OOB memory read. http://bugzilla.remotesensing.org/show_bug.cgi?id=1065
Created attachment 128248 [details] Patch extracted from upstream CVS
It's likely this issue affect RHEL2 and RHEL3 (I've not had time to check source yet).
only affects RHEL4, tif_color.c is new in 3.6
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2006-0425.html