flyyee/CVE-2024-41311.txt

## CVE-2024-41311.txt
[Description]
Due to insufficient checks in ImageOverlay::parse(), decoding a heif file containing an overlay image with forged offsets
can lead to an out-of-bounds read and write.


[Vulnerability type]
Buffer Overflow


[Vendor of the product]
Struktur


[Affected product]
Libheif 1.17.6


[Attack type]
Context-dependent


[Impact]
Code Execution, Information Disclosure, Denial of Service


[Affected component]
libheif/context.cc ImageOverlay::parse()


[Attack vector]
To exploit the vulnerability, a malicious heif file must be decoded by the library.


[References]
https://github.com/strukturag/libheif/issues/1226
https://github.com/strukturag/libheif/pull/1227
https://github.com/strukturag/libheif/commit/a3ed1b1eb178c5d651d6ac619c8da3d71ac2be36


[Discoverer]
Gerrard Tai
	[Description]
	Due to insufficient checks in ImageOverlay::parse(), decoding a heif file containing an overlay image with forged offsets
	can lead to an out-of-bounds read and write.


	[Vulnerability type]
	Buffer Overflow


	[Vendor of the product]
	Struktur


	[Affected product]
	Libheif 1.17.6


	[Attack type]
	Context-dependent


	[Impact]
	Code Execution, Information Disclosure, Denial of Service


	[Affected component]
	libheif/context.cc ImageOverlay::parse()


	[Attack vector]
	To exploit the vulnerability, a malicious heif file must be decoded by the library.


	[References]
	https://github.com/strukturag/libheif/issues/1226
	https://github.com/strukturag/libheif/pull/1227
	https://github.com/strukturag/libheif/commit/a3ed1b1eb178c5d651d6ac619c8da3d71ac2be36


	[Discoverer]
	Gerrard Tai