LibTIFF 4.0.9 is vulnerable to a crash caused by a NULL pointer dereference in the TIFFPrintDirectory function in tif_print.c. An attacker could exploit this by supplying a specially crafted TIFF image, leading to a denial of service.
Created libtiff tracking bugs for this issue:
Affects: fedora-all [bug 1530441]
It seems this flaw is triggered by the following changeset:
This was introduced in tiff-4.0.9, therefore older versions are not affected.