HEIF refers to High Efficiency Image File Format, a file format for single images or image sequences. hevcDecoderConfigurationRecord::getPicWidth() function in hevcdecoderconfigrecord.cpp in HEIF 3.6.2 and earlier versions has global buffer overflow vulnerability. An attacker can exploit this vulnerability to execute code.