CVE-2025-68431 | strukturag libheif up to 1.20.x AVIF File Parser HeifPixelImage::overlay out-of-bounds (GHSA-j87x-4gmq-cqfq)

A vulnerability marked as problematic has been reported in strukturag libheif up to 1.20.x. This impacts the function HeifPixelImage::overlay of the component AVIF File Parser. The manipulation leads to out-of-bounds read.

This vulnerability is traded as CVE-2025-68431. It is possible to initiate the attack remotely. There is no exploit available.

It is suggested to upgrade the affected component.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

CVE-2025-68431 | strukturag libheif up to 1.20.x AVIF File Parser HeifPixelImage::overlay out-of-bounds (GHSA-j87x-4gmq-cqfq)

Post correlati

CVE-2025-9108 | Portabilis i-Diario up to 1.5.0 Login Page ui layer

CVE-2024-54049 | Adobe Connect up to 11.4.7/12.6 cross site scripting (apsb24-99)

CVE-2024-11093 | SG Helper Plugin up to 1.0 on WordPress SVG File Upload cross site scripting

CVE-2023-50770 | OpenId Connect Authentication Plugin up to 2.6 on Jenkins Controller File System information disclosure