Vulnerabilities > Struktur > Libheif > 1.17.6

DATE CVE VULNERABILITY TITLE RISK
2025-04-21 CVE-2025-43966 NULL Pointer Dereference vulnerability in Struktur Libheif
libheif before 1.19.6 has a NULL pointer dereference in ImageItem_iden in image-items/iden.cc.
network
low complexity
struktur CWE-476
7.5
7.5
2025-04-21 CVE-2025-43967 NULL Pointer Dereference vulnerability in Struktur Libheif
libheif before 1.19.6 has a NULL pointer dereference in ImageItem_Grid::get_decoder in image-items/grid.cc because a grid image can reference a nonexistent image item.
network
low complexity
struktur CWE-476
7.5
7.5
2024-10-15 CVE-2024-41311 Out-of-bounds Write vulnerability in multiple products
In Libheif 1.17.6, insufficient checks in ImageOverlay::parse() decoding a heif file containing an overlay image with forged offsets can lead to an out-of-bounds read and write.
network
low complexity
struktur debian CWE-787
8.1
8.1