rpm package
opensuse/libavif&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/libavif&distro=openSUSE%20Tumbleweed
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-48175 | Med | 4.5 | < 1.3.0-3.1 | 1.3.0-3.1 | May 16, 2025 | In libavif before 1.3.0, avifImageRGBToYUV in reformat.c has integer overflows in multiplications involving rgbRowBytes, yRowBytes, uRowBytes, and vRowBytes. | |
| CVE-2025-48174 | Med | 4.5 | < 1.3.0-2.1 | 1.3.0-2.1 | May 16, 2025 | In libavif before 1.3.0, makeRoom in stream.c has an integer overflow and resultant buffer overflow in stream->offset+size. | |
| CVE-2023-6704 | Hig | 8.8 | < 1.0.3-1.1 | 1.0.3-1.1 | Dec 14, 2023 | Use after free in libavif in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted image file. (Chromium security severity: High) |
- affected < 1.3.0-3.1fixed 1.3.0-3.1
In libavif before 1.3.0, avifImageRGBToYUV in reformat.c has integer overflows in multiplications involving rgbRowBytes, yRowBytes, uRowBytes, and vRowBytes.
- affected < 1.3.0-2.1fixed 1.3.0-2.1
In libavif before 1.3.0, makeRoom in stream.c has an integer overflow and resultant buffer overflow in stream->offset+size.
- affected < 1.0.3-1.1fixed 1.0.3-1.1
Use after free in libavif in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potentially exploit heap corruption via a crafted image file. (Chromium security severity: High)