Out-of-bounds Read
Overview Affected versions of this package are vulnerable to Out-of-bounds Read via the HeifPixelImage::overlay function. An attacker can cause a crash by supplying a crafted HEIF file with a malicious iovl overlay box that triggers a negative row length calculation, leading to a large...