An issue was discovered in decode_frame in libavcodec/tiff.c in FFmpeg version 4.3, allows remote attackers to cause a denial of service (DoS).
https://trac.ffmpeg.org/ticket/8960
https://lists.ffmpeg.org/pipermail/ffmpeg-devel/2020-November/272001.html
https://github.com/FFmpeg/FFmpeg/commit/292e41ce650a7b5ca5de4ae87fff0d6a90d9fc97