Описание
Security update for libjxl
This update for libjxl fixes the following issues:
- CVE-2025-12474: a specially crafted file can cause the decoder to read pixel data from uninitialized allocated memory (bsc#1258090).
- CVE-2026-1837: a specially crafted file can cause the decoder to write pixel data to uninitialized unallocated memory (bsc#1258091).
Список пакетов
SUSE Linux Enterprise Module for Package Hub 15 SP7
Ссылки
- Link for SUSE-SU-2026:0648-1
- E-Mail link for SUSE-SU-2026:0648-1
- SUSE Security Ratings
- SUSE Bug 1258090
- SUSE Bug 1258091
- SUSE CVE CVE-2025-12474 page
- SUSE CVE CVE-2026-1837 page
Описание
A specially-crafted file can cause libjxl's decoder to read pixel data from uninitialized (but allocated) memory. This can be done by causing the decoder to reference an outside-image-bound area in a subsequent patches. An incorrect optimization causes the decoder to omit populating those areas.
Затронутые продукты
Ссылки
- CVE-2025-12474
- SUSE Bug 1258090
Описание
A specially-crafted file can cause libjxl's decoder to write pixel data to uninitialized unallocated memory. Soon after that data from another uninitialized unallocated region is copied to pixel data. This can be done by requesting color transformation of grayscale images to another grayscale color space. Buffers allocated for 1-float-per-pixel are used as if they are allocated for 3-float-per-pixel. That happens only if LCMS2 is used as CMS engine. There is another CMS engine available (selected by build flags).
Затронутые продукты
Ссылки
- CVE-2026-1837
- SUSE Bug 1258091