A stack-based buffer overflow vulnerability was reported in thumbnail's _TIFFVGetField() function. Memory corruption can be triggered when handling maliciously crafted tiff file causing application to crash.
Created libtiff tracking bugs for this issue:
Affects: fedora-all [bug 1344070]
Created mingw-libtiff tracking bugs for this issue:
Affects: fedora-all [bug 1344071]
Affects: epel-7 [bug 1344072]