Commit 089a809b for libheif

commit 089a809bf6bed1abae102d5e97b6bb8c4f53b515
Author: Dirk Farin <dirk.farin@gmail.com>
Date:   Thu Jun 25 21:03:28 2026 +0200

    fix possible integer overflow (GHSA-73p7-m7gg-w2jv)

diff --git a/libheif/codecs/uncompressed/unc_decoder.cc b/libheif/codecs/uncompressed/unc_decoder.cc
index c3fdcae3..bad7f158 100644
--- a/libheif/codecs/uncompressed/unc_decoder.cc
+++ b/libheif/codecs/uncompressed/unc_decoder.cc
@@ -190,7 +190,8 @@ const Error unc_decoder::get_compressed_image_data_uncompressed(const DataExtent
       data->insert(data->end(), uncompressed_unit_data.data(), uncompressed_unit_data.data() + uncompressed_unit_data.size());
     }

-    if (range_start_offset + range_size > data->size()) {
+    if (range_start_offset > data->size() ||
+        range_size > data->size() - range_start_offset) {
       return {
         heif_error_Invalid_input,
         heif_suberror_Unspecified,