Описание
In Libheif 1.17.6, insufficient checks in ImageOverlay::parse() decoding a heif file containing an overlay image with forged offsets can lead to an out-of-bounds read and write.
Ссылки
- Third Party Advisory
- Patch
- ExploitIssue Tracking
- Issue TrackingPatch
- Mailing List
Уязвимые конфигурации
EPSS
8.1 High
CVSS3
Дефекты
Связанные уязвимости
In Libheif 1.17.6, insufficient checks in ImageOverlay::parse() decoding a heif file containing an overlay image with forged offsets can lead to an out-of-bounds read and write.
In Libheif 1.17.6, insufficient checks in ImageOverlay::parse() decodi ...
In Libheif 1.17.6, insufficient checks in ImageOverlay::parse() decoding a heif file containing an overlay image with forged offsets can lead to an out-of-bounds read and write.
Уязвимость функции ImageOverlay::parse() декодера и кодировщика форматов видео и фото файлов libheif, позволяющая нарушителю получить доступ к конфиденциальной информации
EPSS
8.1 High
CVSS3