CVE-2026-3950

CVSS v3.1

3.3

Low

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions strukturag libheif versions up to 1.21.2

Description A flaw exists in strukturag libheif, specifically within the Track::load function located in the libheif/sequences/track.cc file, related to the stsz/stts component. This can lead to an out-of-bounds read condition. The attack requires local access. An exploit for this issue is publicly available.

Recommendations Apply a patch to address this issue. Note that the available patch is currently unofficial and not yet approved.

Exploit

Fix

Buffer Overflow

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-125

Related Identifiers

BDU:2026-05076

CVE-2026-3950

ECHO-D166-5C0F-238B

Affected Products

Libheif

CVE-2026-3950

Weakness Enumeration

Related Identifiers

Affected Products

References · 17