The libtiff OJPEG decoder contains a heap buffer overflow when decoding certain malformed data. This was made known via the upstream 3.9.5 announcement. The bug is quite old. upstream bug: http://bugzilla.maptools.org/show_bug.cgi?id=1999
Statement: This flaw did not affect libtiff as shipped in Red Hat Enterprise Linux 4 or 5. The OJPEG decoder is disabled in those distributions.
Created libtiff tracking bugs for this issue Affects: fedora-all [bug 696204]
This issue has been addressed in following products: Red Hat Enterprise Linux 6 Via RHSA-2011:0452 https://rhn.redhat.com/errata/RHSA-2011-0452.html