Struktur

Libheif

22 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.2%
  • Veröffentlicht 19.06.2026 17:16:20
  • Zuletzt bearbeitet 26.06.2026 12:33:18

libheif is a HEIF and AVIF file format decoder and encoder. Prior to version 1.22.1, the uncompressed HEIF decoder validates explicit icef compressed-unit offsets using unit_offset + unit_size. Because the addition can wrap, a crafted HEIF file can p...

Exploit
  • EPSS 0.3%
  • Veröffentlicht 22.05.2026 20:59:09
  • Zuletzt bearbeitet 27.05.2026 15:25:32

libheif is a HEIF and AVIF file format decoder and encoder. In versions 1.21.2 and prior, a crafted HEIF sequence file where the saiz box declares more samples than actually exist in the track's chunk table causes a heap-buffer-overflow (out-of-bound...

Exploit
  • EPSS 0.25%
  • Veröffentlicht 22.05.2026 20:49:16
  • Zuletzt bearbeitet 27.05.2026 15:26:28

libheif is a HEIF and AVIF file format decoder and encoder. In versions 1.21.2 and prior, a malformed HEIF sequence file can trigger an out-of-bounds read in core sequence parsing logic, causing DoS. A malformed file can have stco.entry_count == 0 (c...

Exploit
  • EPSS 0.51%
  • Veröffentlicht 19.05.2026 19:22:07
  • Zuletzt bearbeitet 30.06.2026 03:18:33

libheif is a HEIF and AVIF file format decoder and encoder. Versions 1.21.2 and prior contain a heap-buffer-overflow (write) vulnerability in the grid tile compositing, allowing an attacker to write 64 bytes of fully attacker-controlled data past the...

Exploit
  • EPSS 0.32%
  • Veröffentlicht 19.05.2026 19:10:03
  • Zuletzt bearbeitet 20.05.2026 14:17:13

libheif is a HEIF and AVIF file format decoder and encoder. In versions 1.21.2 and below, a crafted 800-byte HEIF sequence file causes an infinite loop in Box_stts::get_sample_duration(), consuming 100% CPU indefinitely with zero progress, leading to...

Exploit
  • EPSS 0.3%
  • Veröffentlicht 19.05.2026 19:03:48
  • Zuletzt bearbeitet 20.05.2026 14:17:41

libheif is a HEIF and AVIF file format decoder and encoder. In versions 1.21.2 and below, a crafted 792-byte HEIF sequence file with samples_per_chunk=0 in the stsc box causes an unsigned integer underflow in the Chunk constructor (m_last_sample = 0 ...

Exploit
  • EPSS 0.27%
  • Veröffentlicht 29.12.2025 19:15:56
  • Zuletzt bearbeitet 25.02.2026 14:53:34

libheif is an HEIF and AVIF file format decoder and encoder. Prior to version 1.21.0, a crafted HEIF that exercises the overlay image item path triggers a heap buffer over-read in `HeifPixelImage::overlay()`. The function computes a negative row leng...

Exploit
  • EPSS 0.38%
  • Veröffentlicht 20.04.2025 00:00:00
  • Zuletzt bearbeitet 08.05.2025 16:05:19

libheif before 1.19.6 has a NULL pointer dereference in ImageItem_Grid::get_decoder in image-items/grid.cc because a grid image can reference a nonexistent image item.

  • EPSS 0.28%
  • Veröffentlicht 20.04.2025 00:00:00
  • Zuletzt bearbeitet 08.05.2025 16:03:59

libheif before 1.19.6 has a NULL pointer dereference in ImageItem_iden in image-items/iden.cc.

Exploit
  • EPSS 0.23%
  • Veröffentlicht 07.04.2025 00:00:00
  • Zuletzt bearbeitet 15.04.2025 16:10:44

Buffer Overflow vulnerability in libheif 1.19.7 allows a local attacker to execute arbitrary code via the SAO (Sample Adaptive Offset) processing of libde265.