LibTIFF is prone to an overflow condition. The OJPEGReadHeaderInfoSecStreamSof() function fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted TIFF file, a context-dependent attacker can potentially cause arbitrary code execution.
Local / Remote,
Loss of Integrity
Upgrade to version 3.9.5 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.