Ubuntu Security Notice 954-1 – Kevin Finisterre discovered that the TIFF library did not correctly handle certain image structures. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could execute arbitrary code with user privileges, or crash the application, leading to a denial of service. Dan Rosenberg and Sauli Pahlman discovered multiple flaws in the TIFF library. If a user or automated system were into opening a specially crafted TIFF image, a remote attacker could execute arbitrary code with user privileges, or crash the application, leading to a denial of service.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/90903/USN-954-1.txt
Source: https://packetstormsecurity.com/files/90903/Ubuntu-Security-Notice-954-1.html