CVE-2025-68431

CVSS v3.1

7.1

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H

Name of the Vulnerable Software and Affected Versions libheif versions prior to 1.21.0

Description libheif is a decoder and encoder for HEIF and AVIF file formats. A specially crafted HEIF file that utilizes the overlay image item path can cause a heap buffer over-read in the HeifPixelImage::overlay() function. The function calculates a negative row length, which results in an underflow when converted to size t and is subsequently used in a memcpy operation. This leads to a read past the end of the source plane and a crash. The vulnerable function is HeifPixelImage::overlay(). As a workaround, avoid decoding images that use iovl overlay boxes.

Recommendations Update to version 1.21.0 or later. As a temporary workaround, avoid decoding images using iovl overlay boxes.

Exploit

Fix

DoS

Integer Overflow

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190CWE-125

Related Identifiers

CVE-2025-68431

ECHO-D777-8AFD-DE52

GHSA-J87X-4GMQ-CQFQ

OPENSUSE-SU-2026:10019-1

OPENSUSE-SU-2026:20076-1

SUSE-SU-2026:0087-1

SUSE-SU-2026:0377-1

SUSE-SU-2026:20121-1

USN-7952-1

Affected Products

Debian

Linuxmint

Ubuntu

Libheif

CVE-2025-68431

Weakness Enumeration

Related Identifiers

Affected Products

References · 35