UbuntuUpdates.org

Package "libheif-plugin-jpegdec"

Name: libheif-plugin-jpegdec

Description:

ISO/IEC 23008-12:2017 HEIF file format decoder - jpegdec plugin

Latest version: 1.17.6-1ubuntu4.1
Release: noble (24.04)
Level: updates
Repository: universe
Head package: libheif
Homepage: http://www.libheif.org

Links


Download "libheif-plugin-jpegdec"


Other versions of "libheif-plugin-jpegdec" in Noble

Repository Area Version
base universe 1.17.6-1ubuntu4
security universe 1.17.6-1ubuntu4.1

Changelog

Version: 1.17.6-1ubuntu4.1 2024-10-23 12:08:17 UTC

  libheif (1.17.6-1ubuntu4.1) noble-security; urgency=medium

  * SECURITY UPDATE: out-of-bounds data read/write in ImageOverlay::parse()
    - debian/patches/CVE-2024-41311.patch: added patch to check that
      overlay's offsets are valid
    - CVE-2024-41311

 -- Shishir Subedi <email address hidden> Mon, 21 Oct 2024 16:33:55 +0545

CVE-2024-41311 In Libheif 1.17.6, insufficient checks in ImageOverlay::parse() decoding a heif file containing an overlay image with forged offsets can lead to an o



About   -   Send Feedback to @ubuntu_updates