Unrated severityNVD Advisory· Published Oct 15, 2024· Updated Oct 23, 2024
CVE-2024-41311
CVE-2024-41311
Description
In Libheif 1.17.6, insufficient checks in ImageOverlay::parse() decoding a heif file containing an overlay image with forged offsets can lead to an out-of-bounds read and write.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9- Libheif/Libheifdescription
- Range: <=1.17.6
- osv-coords7 versionspkg:rpm/opensuse/libheif&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/libheif&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/libheif&distro=openSUSE%20Tumbleweedpkg:rpm/suse/libheif&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP5pkg:rpm/suse/libheif&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP6pkg:rpm/suse/libheif&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5pkg:rpm/suse/libheif&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP6
< 1.12.0-150400.3.14.1+ 6 more
- (no CPE)range: < 1.12.0-150400.3.14.1
- (no CPE)range: < 1.12.0-150400.3.14.1
- (no CPE)range: < 1.19.5-2.1
- (no CPE)range: < 1.12.0-150400.3.14.1
- (no CPE)range: < 1.12.0-150400.3.14.1
- (no CPE)range: < 1.12.0-150400.3.14.1
- (no CPE)range: < 1.12.0-150400.3.14.1
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.