2016-11-22 19:00:00
mitre
PUBLISHED
tif_write.c in libtiff 4.0.6 has an issue in the error code path of TIFFFlushData1() that didnt reset the tif_rawcc and tif_rawcp members. Reported as MSVR 35095, aka "TIFFFlushData1 heap-buffer-overflow."