An Invalid Address dereference was discovered in TIFFWriteDirectoryTagTransferfunction in libtiff/tif_dirwrite.c in LibTIFF 4.0.10, affecting the cpSeparateBufToContigBuf function in tiffcp.c. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted tiff file. This is different from CVE-2018-12900. References: http://bugzilla.maptools.org/show_bug.cgi?id=2833 https://gitlab.com/libtiff/libtiff/merge_requests/60/diffs
Created libtiff tracking bugs for this issue: Affects: fedora-all [bug 1677529]
*** This bug has been marked as a duplicate of bug 1630004 ***
Statement: This report appears to be a duplicate of CVE-2018-17000. While the crash manifests differently, both vulnerabilities are fixed by the same upstream commit.