Heap-based buffer overflow in the readgifimage function in the gif2tiff tool in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted height and width values in a GIF image.
http://rhn.redhat.com/errata/RHSA-2014-0223.html
https://bugzilla.redhat.com/show_bug.cgi?id=996052
http://secunia.com/advisories/54543
http://secunia.com/advisories/54628