An out-of-bounds read vulnerability has been discovered in ZIPEncode function in tif_zip.c. Running bmp2tiff on a specially crafted BMP file results in an application crash.
An out-of-bounds read vulnerability has been discovered in ZIPEncode function in tif_zip.c. Running bmp2tiff on a specially crafted BMP file results in an application crash.
http://seclists.org/oss-sec/2016/q2/21 http://bugzilla.maptools.org/show_bug.cgi?id=2570
bmp2tiff tool removed upstream in 4.0.7