Description
In Libheif 1.17.6, insufficient checks in ImageOverlay::parse() decoding a heif file containing an overlay image with forged offsets can lead to an out-of-bounds read and write.
References (5)
Core 5
Core References
Third Party Advisory
https://gist.github.com/flyyee/79f1b224069842ee320115cafa5c35c0
Exploit, Issue Tracking
https://github.com/strukturag/libheif/issues/1226
Issue Tracking, Patch
https://github.com/strukturag/libheif/pull/1227
Scores
CVSS v3
8.1
EPSS
0.0020
EPSS Percentile
41.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
total
Details
CWE
CWE-125
CWE-787
Status
published
Products (2)
debian/debian_linux
11.0
struktur/libheif
1.17.6
Published
Oct 15, 2024
Tracked Since
Feb 18, 2026