CVE-2026-41069 libheif allows Out-of-bounds vector access leading to invalid dereference (DoS)

libheif is a HEIF and AVIF file format decoder and encoder. In versions 1.21.2 and prior, a malformed HEIF sequence file can trigger an out-of-bounds read in core sequence parsing logic, causing DoS. A malformed file can have stco.entrycount == 0 creating no chunks while still passing validation...

CVE-2024-47597

A flaw was found in the GStreamer library. Multiple out-of-bounds reads in the MP4/MOV demuxer's sample table parsing and a lack of error checking can cause crashes for certain input files, potentially allowing a malicious actor to trigger an application crash...

DEBIAN-CVE-2021-30015

There is a Null Pointer Dereference in function filtercore/filterpck.c:gffilterpcknewallocinternal in GPAC 1.0.1. The pid comes from function av1dmxparseflushsample, the ctx.opid maybe NULL. The result is a crash in gffilterpcknewallocinternal...