Описание
There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL decoder to use large amounts of stack space (up to 256mb is possible, maybe 512mb), potentially exhausting the stack. An attacker can craft a file that will cause excessive memory usage. We recommend upgrading past commit 65fbec56bc578b6b6ee02a527be70787bbd053b0.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 0.11.1-4 |
| esm-apps/noble | released | 0.7.0-10.2ubuntu6.1 |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | DNE | |
| noble | released | 0.7.0-10.2ubuntu6.1 |
| oracular | ignored | end of life, was needed |
| plucky | not-affected | 0.11.1-4 |
| upstream | released | 0.10.4-1 |
Показывать по
EPSS
7.5 High
CVSS3
Связанные уязвимости
There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL decoder to use large amounts of stack space (up to 256mb is possible, maybe 512mb), potentially exhausting the stack. An attacker can craft a file that will cause excessive memory usage. We recommend upgrading past commit 65fbec56bc578b6b6ee02a527be70787bbd053b0.
There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL decoder to use large amounts of stack space (up to 256mb is possible, maybe 512mb), potentially exhausting the stack. An attacker can craft a file that will cause excessive memory usage. We recommend upgrading past commit 65fbec56bc578b6b6ee02a527be70787bbd053b0.
There exists a stack buffer overflow in libjxl.A specifically-crafted ...
There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL decoder to use large amounts of stack space (up to 256mb is possible, maybe 512mb), potentially exhausting the stack. An attacker can craft a file that will cause excessive memory usage. We recommend upgrading past commit 65fbec56bc578b6b6ee02a527be70787bbd053b0.
EPSS
7.5 High
CVSS3