libtiff versions 3.9.5 and below suffer from an integer overflow vulnerability…. libtiff versions 3.9.5 and below suffer from an integer overflow vulnerability.

Read more http://packetstormsecurity.com/files/122953/XADV-2013001.txt