Niebelungen

**Name of the Vulnerable Software and Affected Versions** libvips version 8.19.0 **Description** A flaw exists in libvips that involves a heap-based buffer overflow. This occurs in the `vips bandrank build` function within the `libvips/conversion/bandrank.c` file when the `index` argument is manipulated. The issue can be exploited locally. The exploit is publicly available. **Recommendations** Install the patch fd28c5463697712cb0ab116a2c55e4f4d92c4088 to address this issue.

**Name of the Vulnerable Software and Affected Versions** libvips version 8.19.0 **Description** A flaw exists in libvips 8.19.0 within the `vips unpremultiply build` function located in the `libvips/conversion/unpremultiply.c` file. Manipulation of the `alpha band` argument can result in an out-of-bounds read. The attack requires local access. An exploit has been published and is potentially usable. **Recommendations** Apply patch 7215ead1e0cd7d3703cc4f5fca06d7d0f4c22b91.

**Name of the Vulnerable Software and Affected Versions** libvips version 8.19.0 **Description** A flaw exists in libvips 8.19.0 within the `vips extract band build` function, located in the libvips/conversion/extract.c file. Manipulation of the `extract band` argument can lead to an out-of-bounds read. Local execution is required for exploitation. The patch identifier is 24795bb3d19d84f7b6f5ed86451ad556c8f2fe70. The exploit has been publicly disclosed. **Recommendations** Deploy the patch with identifier 24795bb3d19d84f7b6f5ed86451ad556c8f2fe70.

**Name of the Vulnerable Software and Affected Versions** libvips version 8.19.0 **Description** A flaw exists in libvips 8.19.0 within the `vips extract area build` function, located in the `libvips/conversion/extract.c` file. Manipulation of the `extract area` argument can lead to an integer overflow. Exploitation requires local access. An exploit for this issue has been publicly released. **Recommendations** Implement the patch identified as 24795bb3d19d84f7b6f5ed86451ad556c8f2fe70 to resolve this issue.

**Name of the Vulnerable Software and Affected Versions** libvips versions prior to 8.18.0 **Description** A flaw exists in libvips, specifically within the `vips foreign load csv build` function located in the `libvips/foreign/csvload.c` file. This issue can lead to a heap-based buffer overflow. Local access is required for exploitation. The vulnerability has been publicly disclosed. **Recommendations** Apply the patch identified as b3ab458a25e0e261cbd1788474bbc763f7435780.

**Name of the Vulnerable Software and Affected Versions** libvips versions prior to 8.18.0 **Description** A memory corruption issue exists in libvips. The flaw is located in the `vips foreign load matrix file is a`/`vips foreign load matrix header` function within the `libvips/foreign/matrixload.c` file. A local attacker can trigger this issue through manipulation, potentially leading to memory corruption. **Recommendations** Apply the patch d4ce337c76bff1b278d7085c3c4f4725e3aa6ece to remediate this issue.

**Name of the Vulnerable Software and Affected Versions** libvips versions prior to 8.18.0 **Description** A flaw exists in libvips that can lead to a null pointer dereference. This issue is located in the `vips foreign load matrix header` function within the `libvips/foreign/matrixload.c` file. The attack requires local access. **Recommendations** Deploy the patch d4ce337c76bff1b278d7085c3c4f4725e3aa6ece.

**Name of the Vulnerable Software and Affected Versions** strukturag libheif versions up to 1.21.2 **Description** A flaw exists in strukturag libheif, specifically within the `Track::load` function located in the `libheif/sequences/track.cc` file, related to the `stsz/stts` component. This can lead to an out-of-bounds read condition. The attack requires local access. An exploit for this issue is publicly available. **Recommendations** Apply a patch to address this issue. Note that the available patch is currently unofficial and not yet approved.

**Name of the Vulnerable Software and Affected Versions** libvips versions prior to 8.19.0 **Description** A heap-based buffer overflow exists in the `vips source read to memory` function within the `libvips/iofuncs/source.c` file. The issue is triggered by a manipulation that can be launched locally. The exploitability is described as difficult. The impact of this issue is negligible, as it only affects custom seekable sources larger than 4 GiB, and the crash occurs in user code rather than libvips itself. **Recommendations** Apply patch a56feecbe9ed66521d9647ec9fbcd2546eccd7ee.