2 matches found
MGASA-2025-0257 Updated libavif packages fix security vulnerabilities
In libavif before 1.3.0, makeRoom in stream.c has an integer overflow and resultant buffer overflow in stream-offset+size. CVE-2025-48174 In libavif before 1.3.0, avifImageRGBToYUV in reformat.c has integer overflows in multiplications involving rgbRowBytes, yRowBytes, uRowBytes, and vRowBytes...
PT-2023-7687 · Google +5 · Google Chrome +5
Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 120.0.6099.109 Description: The issue is related to a use after free vulnerability in the libavif library of Google Chrome, which could allow a remote attacker to potentially exploit heap corruption via a craft...