The TIFFWriteDirectoryTagCheckedRational function in tif_dirwrite.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted TIFF file. Upstream bug: http://bugzilla.maptools.org/show_bug.cgi?id=2535
Created libtiff tracking bugs for this issue: Affects: fedora-all [bug 1449536] Created mingw-libtiff tracking bugs for this issue: Affects: epel-7 [bug 1449537] Affects: fedora-all [bug 1449535]