Product
struktur libheif
21 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-41071
CVE-2026-41069
CVE-2026-32740
CVE-2026-32739
CVE-2026-32738
CVE-2025-68431
CVE-2025-43967
CVE-2025-43966
CVE-2025-29482
CVE-2024-41311
CVE-2024-25269
CVE-2023-49464
CVE-2023-49463
CVE-2023-49462
CVE-2023-49460
CVE-2023-29659
CVE-2023-0996
CVE-2020-23109
CVE-2020-19499
CVE-2020-19498
CVE-2019-11471
< 1.22.0
libheif is a HEIF and AVIF file format decoder and encoder. In versions 1.21.2 and prior, a crafted HEIF sequence file where the s
< 1.22.0
libheif is a HEIF and AVIF file format decoder and encoder. In versions 1.21.2 and prior, a malformed HEIF sequence file can trigg
< 1.22.0
libheif is a HEIF and AVIF file format decoder and encoder. Versions 1.21.2 and prior contain a heap-buffer-overflow (write) vulne
< 1.22.0
libheif is a HEIF and AVIF file format decoder and encoder. In versions 1.21.2 and below, a crafted 800-byte HEIF sequence file ca
< 1.22.0
libheif is a HEIF and AVIF file format decoder and encoder. In versions 1.21.2 and below, a crafted 792-byte HEIF sequence file wi
< 1.21.0
libheif is an HEIF and AVIF file format decoder and encoder. Prior to version 1.21.0, a crafted HEIF that exercises the overlay im
< 1.19.6
libheif before 1.19.6 has a NULL pointer dereference in ImageItem_Grid::get_decoder in image-items/grid.cc because a grid image ca
< 1.19.6
libheif before 1.19.6 has a NULL pointer dereference in ImageItem_iden in image-items/iden.cc.
all versions
Buffer Overflow vulnerability in libheif 1.19.7 allows a local attacker to execute arbitrary code via the SAO (Sample Adaptive Off
all versions
In Libheif 1.17.6, insufficient checks in ImageOverlay::parse() decoding a heif file containing an overlay image with forged offse
<= 1.17.6
libheif <= 1.17.6 contains a memory leak in the function JpegEncoder::Encode. This flaw allows an attacker to cause a denial of se
all versions
libheif v1.17.5 was discovered to contain a segmentation violation via the function UncompressedImageCodec::get_luma_bits_per_pixe
all versions
libheif v1.17.5 was discovered to contain a segmentation violation via the function find_exif_tag at /libheif/exif.cc.
all versions
libheif v1.17.5 was discovered to contain a segmentation violation via the component /libheif/exif.cc.
all versions
libheif v1.17.5 was discovered to contain a segmentation violation via the function UncompressedImageCodec::decode_uncompressed_im
all versions
A Segmentation fault caused by a floating point exception exists in libheif 1.15.1 using crafted heif images via the heif::Fractio
all versions
There is a vulnerability in the strided image data parsing code in the emscripten wrapper for libheif. An attacker could exploit t
all versions
Buffer overflow vulnerability in function convert_colorspace in heif_colorconversion.cc in libheif v1.6.2, allows attackers to cau
all versions
An issue was discovered in heif::Box_iref::get_references in libheif 1.4.0, allows attackers to cause a Denial of Service or possi
all versions
Floating point exception in function Fraction in libheif 1.4.0, allows attackers to cause a Denial of Service or possibly other un
all versions
libheif 1.4.0 has a use-after-free in heif::HeifContext::Image::set_alpha_channel in heif_context.h because heif_context.cc mishan