HIGH🇬🇧 English

CVE-2021-36691

CVSS 7.5v3.1pub. 2021-08-30upd. 2024-11-21

libjxl v0.5.0 is affected by a Assertion failed issue in lib/jxl/image.cc jxl::PlaneBase::PlaneBase(). When encoding a malicous GIF file using cjxl, an attacker can trigger a denial of service.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Libjxl Project Libjxl

    APP
    Libjxl Project
    0.5.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
DoS
CWE
Referencje

Powiązane podatności

CVE-2021-27804CRITICAL9.8ten sam produkt

JPEG XL (aka jpeg-xl) through 0.3.2 allows writable memory corruption.

CVE-2026-1837HIGH8.7ten sam produkt

A specially-crafted file can cause libjxl's decoder to write pixel data to uninitialized unallocated memory. S...

CVE-2023-35790HIGH7.5ten sam produkt

An issue was discovered in dec_patch_dictionary.cc in libjxl before 0.8.2. An integer underflow in patch decod...

CVE-2024-11403MEDIUM6.9ten sam produkt

There exists an out of bounds read/write in LibJXL versions prior to commit 9cc451b91b74ba470fd72bd48c121e9f33...

CVE-2024-11498MEDIUM6.9ten sam produkt

There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL decoder to u...