In LibTIFF 4.0.7, the TIFFReadDirEntryLong8Array function in libtiff/tif_dirread.c mishandles a malloc operation, which allows attackers to cause a denial of service (memory leak within the function _TIFFmalloc in tif_unix.c) via a crafted file. Upstream bug: http://bugzilla.maptools.org/show_bug.cgi?id=2682
External References: http://somevulnsofadlab.blogspot.com.br/2017/06/libtiffmemory-leak-in-tiffmalloc.html
Created libtiff tracking bugs for this issue: Affects: fedora-all [bug 1464450]