Source: libheif Version: 1.19.8-1 Severity: grave Tags: security upstream X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]>
Hi, The following vulnerability was published for libheif. CVE-2026-47178[0]: | Heap-based Buffer Overflow in Uncompressed Image Tiled Decoding If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2026-47178 https://www.cve.org/CVERecord?id=CVE-2026-47178 [1] https://project-zero.issues.chromium.org/issues/507396184 [2] https://github.com/strukturag/libheif/security/advisories/GHSA-5x55-x5pf-9c6g [3] https://github.com/strukturag/libheif/commit/62d60530610110fc7bc6d08ff30f2cf23917a1eb Regards, Salvatore
