libheif-js@1.12.0 vulnerabilities

Emscripten distribution of libheif for Node.JS and the browser

Direct Vulnerabilities

Known vulnerabilities in the libheif-js package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Buffer Overflow

Affected versions of this package are vulnerable to Buffer Overflow by allowing an attacker to exploit this vulnerability through a crafted image file.

How to fix Buffer Overflow?

Upgrade libheif-js to version 1.15.1 or higher.

<1.15.1