CVE-2025-70103
Received
Received - Intake
Heap Buffer Overflow in libjxl via PBM Image Processing
Publication date: 2026-05-27
Last updated on: 2026-05-27
Assigner: MITRE
Description
Description
Heap buffer overflow vulnerability in libjxl 0.12.0 via crafted PBM images to the jxl::extras::DecodeImagePNM function in file lib/extras/dec/pnm.cc.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| libjxl | libjxl | 0.12.0 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a heap buffer overflow in the libjxl library version 0.12.0. It occurs when processing specially crafted PBM images in the function jxl::extras::DecodeImagePNM located in the file lib/extras/dec/pnm.cc.
How can this vulnerability impact me? :
A heap buffer overflow can lead to various impacts including application crashes, data corruption, or potentially arbitrary code execution if exploited by an attacker. This could compromise the security and stability of any system using the vulnerable libjxl library to process PBM images.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70