Hi, The current version of graphics/tiff (3.9.5) in ports seems to be vulnerable to CVE-2012-1173, a heap-buffer overflow.
Upstream information and patch: http://bugzilla.maptools.org/show_bug.cgi?id=2369 Others informations: http://seclists.org/oss-sec/2012/q2/31 https://bugzilla.redhat.com/show_bug.cgi?id=803078 Thanks. -- Sebastien Marie
