CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2021-32287
https://notcve.org/view.php?id=CVE-2021-32287
An issue was discovered in heif through v3.6.2. A global-buffer-overflow exists in the function HevcDecoderConfigurationRecord::getPicWidth() located in hevcdecoderconfigrecord.cpp. It allows an attacker to cause code Execution. Se ha detectado un problema en heif versiones hasta 3.6.2. Se presenta un desbordamiento del búfer global en la función HevcDecoderConfigurationRecord::getPicWidth() ubicada en el archivo hevcdecoderconfigrecord.cpp. • https://github.com/nokiatech/heif/issues/86 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2021-32288
https://notcve.org/view.php?id=CVE-2021-32288
An issue was discovered in heif through v3.6.2. A global-buffer-overflow exists in the function HevcDecoderConfigurationRecord::getPicHeight() located in hevcdecoderconfigrecord.cpp. It allows an attacker to cause code Execution. Se ha detectado un problema en heif versiones hasta 3.6.2. Se presenta un desbordamiento del búfer global en la función HevcDecoderConfigurationRecord::getPicHeight() ubicada en el archivo hevcdecoderconfigrecord.cpp. • https://github.com/nokiatech/heif/issues/87 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2021-32289
https://notcve.org/view.php?id=CVE-2021-32289
An issue was discovered in heif through through v3.6.2. A NULL pointer dereference exists in the function convertByteStreamToRBSP() located in nalutil.cpp. It allows an attacker to cause Denial of Service. Se ha detectado un problema en heif versiones hasta 3.6.2. Se presenta una desreferencia de puntero NULL en la función convertByteStreamToRBSP() ubicada en el archivo nalutil.cpp. • https://github.com/nokiatech/heif/issues/85 • CWE-476: NULL Pointer Dereference •