CVE-2019-5187
An out-of-bounds write in ImageGear igcore19d.dll (TIF_read_stripdata) of version 19.5.0 enables remote code execution when processing certain TIFF strips. The vulnerability arises during stripe data handling: dstBuffer size is computed via two paths using imagewidth (ImageWidth tag) and bits-per...