Posted by Project Zero Labs on Dec 22

———-
Background
———-

Libtiff provides support for the Tag Image File Format (TIFF), a widely
used format for storing image data.

—————-
Software Version
—————-

All tests were performed using libtiff 4.0.3

———–
Description
———–

Fuzzing bmp2tiff, using the afl-fuzzer, revealed an integer overflow
issue related to the dimensions of the input BMP image. The issue
resulted in an out-of-bounds…