USN-8526-2

Source
https://ubuntu.com/security/notices/USN-8526-2
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8526-2.json
JSON Data
https://api.osv.dev/v1/vulns/USN-8526-2
Upstream
Related
Published
2026-07-14T16:29:55Z
Modified
2026-07-14T23:44:41.506382344Z
Summary
libheif vulnerabilities
Details

USN-8526-1 fixed vulnerabilities in libheif. This update provides the corresponding updates for CVE-2026-47709 and CVE-2026-47714 in Ubuntu 24.04 LTS.

Original advisory details:

Junyi Liu discovered that libheif had a null pointer dereference in its image tiling interface. An attacker could possibly use this issue to cause a denial of service. (CVE-2026-47709)

Calvin Young and Enoch Chow discovered that libheif had an integer overflow in its inline mask size calculation. An attacker could possibly use this issue to cause a denial of service or obtain sensitive information. (CVE-2026-47714)

References

Affected packages

Ubuntu:24.04:LTS / libheif

Package

Name
libheif
Purl
pkg:deb/ubuntu/libheif?arch=source&distro=noble

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.17.6-1ubuntu4.6

Affected versions

1.*
1.16.2-2ubuntu1
1.17.1-1ubuntu2
1.17.1-1ubuntu3
1.17.4-1ubuntu1
1.17.6-1ubuntu1
1.17.6-1ubuntu2
1.17.6-1ubuntu3
1.17.6-1ubuntu4
1.17.6-1ubuntu4.1
1.17.6-1ubuntu4.2
1.17.6-1ubuntu4.3
1.17.6-1ubuntu4.4
1.17.6-1ubuntu4.5

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_version": "1.17.6-1ubuntu4.6",
            "binary_name": "heif-gdk-pixbuf"
        },
        {
            "binary_version": "1.17.6-1ubuntu4.6",
            "binary_name": "heif-thumbnailer"
        },
        {
            "binary_version": "1.17.6-1ubuntu4.6",
            "binary_name": "libheif-examples"
        },
        {
            "binary_version": "1.17.6-1ubuntu4.6",
            "binary_name": "libheif-plugin-aomdec"
        },
        {
            "binary_version": "1.17.6-1ubuntu4.6",
            "binary_name": "libheif-plugin-aomenc"
        },
        {
            "binary_version": "1.17.6-1ubuntu4.6",
            "binary_name": "libheif-plugin-dav1d"
        },
        {
            "binary_version": "1.17.6-1ubuntu4.6",
            "binary_name": "libheif-plugin-ffmpegdec"
        },
        {
            "binary_version": "1.17.6-1ubuntu4.6",
            "binary_name": "libheif-plugin-j2kdec"
        },
        {
            "binary_version": "1.17.6-1ubuntu4.6",
            "binary_name": "libheif-plugin-j2kenc"
        },
        {
            "binary_version": "1.17.6-1ubuntu4.6",
            "binary_name": "libheif-plugin-jpegdec"
        },
        {
            "binary_version": "1.17.6-1ubuntu4.6",
            "binary_name": "libheif-plugin-jpegenc"
        },
        {
            "binary_version": "1.17.6-1ubuntu4.6",
            "binary_name": "libheif-plugin-libde265"
        },
        {
            "binary_version": "1.17.6-1ubuntu4.6",
            "binary_name": "libheif-plugin-rav1e"
        },
        {
            "binary_version": "1.17.6-1ubuntu4.6",
            "binary_name": "libheif-plugin-svtenc"
        },
        {
            "binary_version": "1.17.6-1ubuntu4.6",
            "binary_name": "libheif-plugin-x265"
        },
        {
            "binary_version": "1.17.6-1ubuntu4.6",
            "binary_name": "libheif1"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8526-2.json"
cves_map
{
    "cves": [
        {
            "severity": [
                {
                    "type": "Ubuntu",
                    "score": "medium"
                }
            ],
            "id": "CVE-2026-47709"
        },
        {
            "severity": [
                {
                    "type": "Ubuntu",
                    "score": "medium"
                }
            ],
            "id": "CVE-2026-47714"
        }
    ],
    "ecosystem": "Ubuntu:24.04:LTS"
}