Medium severity6.5NVD Advisory· Published May 22, 2026· Updated May 27, 2026
CVE-2026-41069
CVE-2026-41069
Description
libheif is a HEIF and AVIF file format decoder and encoder. In versions 1.21.2 and prior, a malformed HEIF sequence file can trigger an out-of-bounds read in core sequence parsing logic, causing DoS. A malformed file can have stco.entry_count == 0 (creating no chunks) while still passing validation because saio.entry_count == 0 matches, but with saiz.sample_count > 0 the SampleAuxInfoReader constructor still enters its loop. This leads to an out-of-bounds dereference on the empty chunks[0] in chunked mode.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:struktur:libheif:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:struktur:libheif:*:*:*:*:*:*:*:*range: <1.22.0
- (no CPE)range: <=1.21.2
- osv-coords4 versionspkg:rpm/opensuse/libheif&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/libheif&distro=openSUSE%20Tumbleweedpkg:rpm/suse/libheif&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/libheif&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0
< 1.23.0-160000.1.1+ 3 more
- (no CPE)range: < 1.23.0-160000.1.1
- (no CPE)range: < 1.22.2-1.1
- (no CPE)range: < 1.23.0-160000.1.1
- (no CPE)range: < 1.23.0-160000.1.1
Patches
Vulnerability mechanics
References
2- github.com/strukturag/libheif/security/advisories/GHSA-p82x-fpmv-576rnvdExploitVendor Advisory
- github.com/strukturag/libheif/releases/tag/v1.22.0nvdProductRelease Notes
News mentions
0No linked articles in our index yet.