libjxl

Link	package \| bugs open \| bugs closed \| Wiki \| GitHub \| web search
Description	JPEG XL image format reference implementation
Version	0.11.1-1 [extra]

Resolved

Group	Affected	Fixed	Severity	Status	Ticket
AVG-2508	0.6-1	0.6.1-1	Medium	Fixed

Issue	Group	Severity	Remote	Type	Description
CVE-2021-22564	AVG-2508	Medium	Yes	Arbitrary code execution	In libxjl before version 0.6.1, for certain valid JPEG XL images with a size slightly larger than an integer number of groups (256x256 pixels) when...
CVE-2021-22563	AVG-2508	Medium	Yes	Information disclosure	Invalid JPEG XL images using libjxl before version 0.6.1 can cause an out of bounds access on a std::vector<std::vector<T>> when rendering splines. The OOB...

Issue

Group

Severity

Remote

Type

Description

CVE-2021-22564

AVG-2508

Medium

Yes

Arbitrary code execution

In libxjl before version 0.6.1, for certain valid JPEG XL images with a size slightly larger than an integer number of groups (256x256 pixels) when...

CVE-2021-22563

AVG-2508

Medium

Yes

Information disclosure

Invalid JPEG XL images using libjxl before version 0.6.1 can cause an out of bounds access on a std::vector<std::vector<T>> when rendering splines. The OOB...