CVE-2019-5084

Name of the Vulnerable Software and Affected Versions LEADTOOLS version 20

Description A heap out-of-bounds write issue exists in the TIF-parsing functionality. This can be triggered by a specially crafted TIF image, causing an offset beyond the bounds of a heap allocation to be written, potentially resulting in code execution.

Recommendations For LEADTOOLS version 20, consider avoiding the use of TIF images from untrusted sources until a fix is available. As a temporary workaround, restrict the processing of TIF images to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.