CVE-2021-36691

Опубликовано: 30 авг. 2021

Источник: debian

EPSS Низкий

Описание

libjxl v0.5.0 is affected by a Assertion failed issue in lib/jxl/image.cc jxl::PlaneBase::PlaneBase(). When encoding a malicous GIF file using cjxl, an attacker can trigger a denial of service.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
jpeg-xl	unfixed			package

Примечания

https://github.com/libjxl/libjxl/issues/422
Special case of https://github.com/libjxl/libjxl/issues/762
Negligible security impact

EPSS

Процентиль: 53%

0.00303

Низкий

Связанные уязвимости

CVE-2021-36691

CVSS3: 7.5

ubuntu

больше 4 лет назад

libjxl v0.5.0 is affected by a Assertion failed issue in lib/jxl/image.cc jxl::PlaneBase::PlaneBase(). When encoding a malicous GIF file using cjxl, an attacker can trigger a denial of service.

CVE-2021-36691

CVSS3: 7.5

nvd

больше 4 лет назад

libjxl v0.5.0 is affected by a Assertion failed issue in lib/jxl/image.cc jxl::PlaneBase::PlaneBase(). When encoding a malicous GIF file using cjxl, an attacker can trigger a denial of service.

GHSA-fg2p-g438-rjr4

github

больше 3 лет назад

libjxl v0.5.0 is affected by a Assertion failed issue in lib/jxl/image.cc jxl::PlaneBase::PlaneBase(). When encoding a malicous GIF file using cjxl, an attacker can trigger a denial of service.

EPSS

Процентиль: 53%

0.00303

Низкий