VYPR

rpm package

suse/libavif&distro=SUSE Linux Enterprise Module for Basesystem 15 SP6

pkg:rpm/suse/libavif&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6

Vulnerabilities (2)

  • CVE-2025-48175May 16, 2025
    affected < 1.3.0-150600.3.5.1fixed 1.3.0-150600.3.5.1

    In libavif before 1.3.0, avifImageRGBToYUV in reformat.c has integer overflows in multiplications involving rgbRowBytes, yRowBytes, uRowBytes, and vRowBytes.

  • CVE-2025-48174May 16, 2025
    affected < 1.3.0-150600.3.5.1fixed 1.3.0-150600.3.5.1

    In libavif before 1.3.0, makeRoom in stream.c has an integer overflow and resultant buffer overflow in stream->offset+size.