CVE-2017-13317

Name of the Vulnerable Software and Affected Versions HeifDecoderImpl (affected versions not specified)

Description The issue is related to a possible out-of-bounds read in HeifDecoderImpl::getScanline due to incorrect input validation. This could lead to remote information disclosure without the need for additional execution privileges. User interaction is required for exploitation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.