OSV-2023-1129 UNKNOWN READ in HeifPixelImage::overlay

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=63990 Crash type: UNKNOWN READ Crash state: HeifPixelImage::overlay HeifContext::decodeoverlayimage HeifContext::decodeimageplanar...

PT-2023-35570 · Unknown · Heifcontext

Name of the Vulnerable Software and Affected Versions: HeifContext affected versions not specified Description: The issue is related to a crash in the HeifPixelImage overlay function, specifically in the HeifContext decode overlay image and decode image planar functions. Recommendations: At the...

OSV-2023-736 Heap-buffer-overflow in HeifContext::interpret_heif_file

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=61718 Crash type: Heap-buffer-overflow READ 4 Crash state: HeifContext::interpretheiffile HeifContext::readfrommemory heifcontextreadfrommemory...

OSV-2023-332 Heap-buffer-overflow in RegionGeometry_Polygon::parse

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=58183 Crash type: Heap-buffer-overflow READ 1 Crash state: RegionGeometryPolygon::parse RegionItem::parse heif::HeifContext::interpretheiffile...

OSV-2023-330 Heap-buffer-overflow in RegionItem::parse

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=58150 Crash type: Heap-buffer-overflow READ 1 Crash state: RegionItem::parse heif::HeifContext::interpretheiffile heif::HeifContext::readfrommemory...

OSV-2023-328 Heap-buffer-overflow in RegionItem::parse

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=58152 Crash type: Heap-buffer-overflow READ 1 Crash state: RegionItem::parse heif::HeifContext::interpretheiffile heif::HeifContext::read...

OSV-2020-1260 Negative-size-param in heif::HeifPixelImage::fill_RGB_16bit

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=13563 Crash type: Negative-size-param Crash state: heif::HeifPixelImage::fillRGB16bit heif::HeifContext::decodeoverlayimage heif::HeifContext::decodeimage...

Design/Logic Flaw

libheif 1.4.0 has a use-after-free in heif::HeifContext::Image::setalphachannel in heifcontext.h because heifcontext.cc mishandles references to non-existing alpha images...

imagemagick/encoder_heic_fuzzer: Use-of-uninitialized-value in heif::HeifContext::decode_overlay_image

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5171925214035968 Project: imagemagick Fuzzer: libFuzzerimagemagickencoderheicfuzzer Fuzz target binary: encoderheicfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type:...

imagemagick/encoder_heic_fuzzer: Use-of-uninitialized-value in heif::HeifContext::decode_full_grid_image

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5362068734607360 Project: imagemagick Fuzzer: libFuzzerimagemagickencoderheicfuzzer Fuzz target binary: encoderheicfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type:...