An issue exists in function TIFFReadDirectory libtiff prior to 4.4.0 allows malicious users to cause a denial of service via crafted TIFF file.
libtiff libtiff