Gaintcomeo

**Name of the Vulnerable Software and Affected Versions** libheif version 1.6.2 **Description** The issue is related to a buffer overflow vulnerability in the `convert colorspace` function in `heif colorconversion.cc`. This vulnerability allows attackers to cause a denial of service and disclose sensitive information by using a crafted HEIF file. **Recommendations** For libheif version 1.6.2, consider updating to a newer version that contains a fix for this issue, as using a crafted HEIF file can lead to a denial of service and sensitive information disclosure. At the moment, there is no information about a newer version that contains a fix for this vulnerability.