CVE-2016-9539: libtiff: Out-of-bounds read in readContigTilesIntoBuffer()

Severity: Critical

CVSS Score: 9.8

tools/tiffcrop.c in libtiff 4.0.6 has an out-of-bounds read in readContigTilesIntoBuffer(). Reported as MSVR 35092.