Posted on

LibTIFF 4.0.9 tif_lzw.c LZWDecodeCompat TIFF File memory corruption

A vulnerability was found in LibTIFF 4.0.9 (Image Processing Software). It has been classified as critical. Affected is the function LZWDecodeCompat of the file tif_lzw.c. Upgrading eliminates this vulnerability. A possible mitigation has been published 2 months after the disclosure of the vulnerability.