A heap-based buffer overflow was found in the way TIFF (Tagged Image File
Format) image files manipulating library parsed certain malformed tiff files.
This can be triggered only if libtiff is compiled with JPEG.
If an attacker created a specially-crafted image file and tricked a local,
unsuspecting user into loading the image file in an application that uses
the TIFF image manipulating library, it could cause that application to
crash or, potentially, execute arbitrary code with the privileges of
the user running the application.
This bug does not affect the version of libtiff 3.8.X shipped with rhel-5 because libtiff is patched with libtiff-jpeg-scanline.patch, which mitigates the patch.
Upstream bug link:
Not vulnerable. This issue did not affect the versions of libtiff as
shipped with Red Hat Enterprise Linux 4, 5, or 6.