Name of the Vulnerable Software and Affected Versions heif (affected versions not specified)

Description A heap buffer overflow read issue has been identified. The crash occurs in the Op YCbCr422 to RGB 16bit::convert colorspace function, which is part of the heif::ColorConversionPipeline::convert image and heif::convert colorspace processes.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.