Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the decodemaskimage function. An attacker can cause a heap buffer overflow by providing a crafted HEIF file containing a mask image where the iloc extent exceeds the allocated pixel buffer, leading to...

CVE-2026-32741

libheif is a HEIF and AVIF file format decoder and encoder. Versions 1.21.2 and below contain a heap buffer overflow in MaskImageCodec::decodemaskimage. When decoding a HEIF file containing a mask image mski, the function copies the full iloc extent data into a pixel buffer using memcpydst,...

CVE-2026-32741 libheif has a heap buffer overflow in decode_mask_image()

libheif is a HEIF and AVIF file format decoder and encoder. Versions 1.21.2 and below contain a heap buffer overflow in MaskImageCodec::decodemaskimage. When decoding a HEIF file containing a mask image mski, the function copies the full iloc extent data into a pixel buffer using memcpydst,...

CVE-2026-32741

CVE-2026-32741 affects libheif 1.21.2 and earlier. The heap buffer overflow occurs in MaskImageCodec::decode_mask_image() when decoding a HEIF file containing a mask image; the function copies data.size() bytes into a pixel buffer sized by image dimensions using a single memcpy without an upper-b...

PT-2026-42005

Name of the Vulnerable Software and Affected Versions libheif versions prior to 1.22.0 Description A heap buffer overflow exists in the MaskImageCodec::decode mask image function. This occurs when decoding a HEIF file containing a mask image mski because the function copies the full iloc extent...