nokiatech/heif

nokiatech/heif

Releases15

Frequency8 months 1 day

Last Release over 1 year ago

Stars1.79K

High Efficiency Image File Format

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-32287 ↗	Sep 20, 2021Monday, 20 September 2021, 16:15	7.8 HIGH	6.8 MEDIUM
An issue was discovered in heif through v3.6.2. A global-buffer-overflow exists in the function HevcDecoderConfigurationRecord::getPicWidth() located in hevcdecoderconfigrecord.cpp. It allows an attacker to cause code Execution.
CVE-2021-32288 ↗	Sep 20, 2021Monday, 20 September 2021, 16:15	7.8 HIGH	6.8 MEDIUM
An issue was discovered in heif through v3.6.2. A global-buffer-overflow exists in the function HevcDecoderConfigurationRecord::getPicHeight() located in hevcdecoderconfigrecord.cpp. It allows an attacker to cause code Execution.
CVE-2021-32289 ↗	Sep 20, 2021Monday, 20 September 2021, 16:15	5.5 MEDIUM	4.3 MEDIUM
An issue was discovered in heif through through v3.6.2. A NULL pointer dereference exists in the function convertByteStreamToRBSP() located in nalutil.cpp. It allows an attacker to cause Denial of Service.