Information on source package libheif

Available versions

Bug	bullseye	bookworm	trixie	forky	sid	Description
CVE-2026-3950	fixed	fixed	fixed	vulnerable	vulnerable	A vulnerability was identified in strukturag libheif up to 1.21.2. Thi ...
CVE-2025-68431	vulnerable (no DSA, postponed)	vulnerable (no DSA)	vulnerable (no DSA)	fixed	fixed	libheif is an HEIF and AVIF file format decoder and encoder. Prior to ...

Bug	bullseye	bookworm	trixie	forky	sid	Description
CVE-2026-3949	vulnerable	vulnerable	vulnerable	vulnerable	vulnerable	A vulnerability was determined in strukturag libheif up to 1.21.2. Thi ...
CVE-2024-25269	vulnerable	vulnerable	fixed	fixed	fixed	libheif <= 1.17.6 contains a memory leak in the function JpegEncoder:: ...
CVE-2023-49463	vulnerable	vulnerable	fixed	fixed	fixed	libheif v1.17.5 was discovered to contain a segmentation violation via ...

Bug	Description
CVE-2025-43967	libheif before 1.19.6 has a NULL pointer dereference in ImageItem_Grid ...
CVE-2025-43966	libheif before 1.19.6 has a NULL pointer dereference in ImageItem_iden ...
CVE-2024-41311	In Libheif 1.17.6, insufficient checks in ImageOverlay::parse() decodi ...
CVE-2023-49464	libheif v1.17.5 was discovered to contain a segmentation violation via ...
CVE-2023-49462	libheif v1.17.5 was discovered to contain a segmentation violation via ...
CVE-2023-49460	libheif v1.17.5 was discovered to contain a segmentation violation via ...
CVE-2023-29659	A Segmentation fault caused by a floating point exception exists in li ...
CVE-2023-0996	There is a vulnerability in the strided image data parsing code in the ...
CVE-2020-23109	Buffer overflow vulnerability in function convert_colorspace in heif_c ...
CVE-2020-19499	An issue was discovered in heif::Box_iref::get_references in libheif 1 ...
CVE-2020-19498	Floating point exception in function Fraction in libheif 1.4.0, allows ...
CVE-2019-11471	libheif 1.4.0 has a use-after-free in heif::HeifContext::Image::set_al ...