It was found that tools/tiffcrop.c in libtiff 4.0.6 reads an undefined buffer in readContigStripsIntoBuffer() because of a uint16 integer overflow.
Created libtiff tracking bugs for this issue:
Affects: fedora-all [bug 1397781]
Created mingw-libtiff tracking bugs for this issue:
Affects: fedora-all [bug 1397782]
Affects: epel-7 [bug 1397783]
This is an Out-of-bounds read flaw in the libtiff library. A specially-crafted image can cause an application linked with the libtiff library to crash.