A vulnerability was found in strukturag libheif up to 1.21.x . It has been rated as critical . Impacted is an unknown function of the component AVIF File Handler . The manipulation leads to out-of-bounds write. This vulnerability is documented as CVE-2026-32740 . The attack can be initiated remotely. There is not any exploit available. Upgrading the affected component is advised.