CVE-2025-68431 | strukturag libheif up to 1.20.x AVIF File Parser HeifPixelImage::overlay out-of-bounds (GHSA-j87x-4gmq-cqfq)

A vulnerability marked as problematic has been reported in strukturag libheif up to 1.20.x. This impacts the function HeifPixelImage::overlay of the component AVIF File Parser. The manipulation leads to out-of-bounds read.

This vulnerability is traded as CVE-2025-68431. It is possible to initiate the attack remotely. There is no exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More