RSS   Podatności dla 'Libheif'   RSS

2021-11-03
 
CVE-2020-23109

CWE-120
 

 
Buffer overflow vulnerability in function convert_colorspace in heif_colorconversion.cc in libheif v1.6.2, allows attackers to cause a denial of service and disclose sensitive information, via a crafted HEIF file.

 
2019-04-23
 
CVE-2019-11471

CWE-416
 

 
libheif 1.4.0 has a use-after-free in heif::HeifContext::Image::set_alpha_channel in heif_context.h because heif_context.cc mishandles references to non-existing alpha images.

 


Copyright 2021, cxsecurity.com

 

Back to Top