(https://nvd.nist.gov/vuln/detail/CVE-2018-5360): LibTIFF before 4.0.6 mishandles the reading of TIFF files, as demonstrated by a heap-based buffer over-read in the ReadTIFFImage function in coders/tiff.c in GraphicsMagick 1.3.27 @maintainer(s): please confirm if fixed in 739dcd28, https://gitlab.com/libtiff/libtiff/commit/739dcd28a061738b317c1e9f91029d9cbc157159 is applied to 3.9.7-r1. Gentoo Security Padawan (domhnall)
Summary reflects what version it was fixed in, but this bug was filed well after the fact.