Lucene search
China National Vulnerability DatabaseCNVD-2021-94969HistoryNov 04, 2021 - 12:00 a.m.
libheif buffer overflow vulnerability
2021-11-0400:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
libheif
buffer overflow
convert_colorspace
heif files
vulnerability
denial of service
sensitive information disclosure
iso/iec 23008-12:2017
EPSS
0.002
Percentile
61.7%
libheif is an ISO/IEC 23008-12:2017 HEIF file format decoder and encoder. libheif version 1.6.2 contains a buffer overflow vulnerability in the convert_colorspace function in heif_colorconversion.cc. An attacker can exploit this vulnerability to cause a denial of service and disclose sensitive information via specially crafted HEIF files.
Related
debiancve
debiancve
CVE-2020-23109
2021-11-03 17:15:08
ubuntucve
ubuntucve
CVE-2020-23109
2021-11-03 00:00:00
veracode
veracode
Denial Of Service (DoS) Through Heap Buffer Overflow
2021-11-05 12:59:57
nvd
nvd
CVE-2020-23109
2021-11-03 17:15:08
prion
prion
Buffer overflow
2021-11-03 17:15:00
osv
osv
CVE-2020-23109
2021-11-03 17:15:08
libheif vulnerabilities
2024-06-25 16:50:16
cvelist
cvelist
CVE-2020-23109
2021-11-03 16:07:03
cve
cve
CVE-2020-23109
2021-11-03 17:15:08
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0243)
2024-06-28 00:00:00
Ubuntu: Security Advisory (USN-6847-1)
2024-06-26 00:00:00
nessus
nessus
mageia
mageia
Updated libheif packages fix security vulnerabilities
2024-06-28 05:41:31
ubuntu
ubuntu
libheif vulnerabilities
2024-06-25 00:00:00