CVE-2025-29482

Medium CVSS: 6.2

Buffer Overflow vulnerability in libheif 1.19.7 allows a local attacker to execute arbitrary code via the SAO (Sample Adaptive Offset) processing of libde265.

Vendor

Struktur

Product

Libheif

CWE

CWE-120

Yayın Tarihi

2025-04-07 20:15:20

Güncelleme

2025-04-15 16:10:44

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-120 Libheif MEDIUM Struktur 2025

Referanslar

https://github.com/lmarch2/poc/blob/main/libheif/libheif.md https://github.com/lmarch2/poc/blob/main/libheif/libheif.md

Benzer Kayıtlar

High

CVE-2026-33164

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.17, a malformed H.265 PPS NAL u…

Medium

CVE-2026-33165

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.0.17, a crafted HEVC bitstream ca…

Medium

CVE-2025-61147

strukturag libde265 commit d9fea9d wa discovered to contain a segmentation fault via the component decoder_context::comp…

Medium

CVE-2025-68431

libheif is an HEIF and AVIF file format decoder and encoder. Prior to version 1.21.0, a crafted HEIF that exercises the…

Low

CVE-2025-43966

libheif before 1.19.6 has a NULL pointer dereference in ImageItem_iden in image-items/iden.cc.

Low

CVE-2025-43967

libheif before 1.19.6 has a NULL pointer dereference in ImageItem_Grid::get_decoder in image-items/grid.cc because a gri…