libheif v1.17.5 was discovered to contain a segmentation violation via the function find_exif_tag at /libheif/exif.cc.
Created libheif tracking bugs for this issue: Affects: fedora-all [bug 2253566]
Is this https://github.com/strukturag/libheif/issues/1042 ? Please link to upstream tickets in these bug reports. They're useless otherwise.
Hey Dominik, sorry for the very sparse report. Yes, that is the correct issue link. RH ProdSec uses a special field to share those kinds of links, it shows up on a full CVE page as "external references" however in the case of a flaw which exclusively affects community projects, there is no CVE page and that particular data isn't visible thru bugzilla. I had no idea it worked like. In future I'll be more careful to also paste links into the first comment so it is readily available to the people who need it.