Prompted by https://bugs.gentoo.org/953971#c3. I took a further look now and found some bits (didn't see anything in release notes so wasn't too worried yesterday). -- * CVE-2025-43966 libheif before 1.19.6 has a NULL pointer dereference in ImageItem_iden in image-items/iden.cc. * CVE-2025-43967 libheif before 1.19.6 has a NULL pointer dereference in ImageItem_Grid::get_decoder in image-items/grid.cc because a grid image can reference a nonexistent image item.
