ГлавнаяУязвимости → CVE-2025-70103
7.3высокая

CVE-2025-70103

Описание

Heap buffer overflow vulnerability in libjxl 0.12.0 via crafted PBM images to the jxl::extras::DecodeImagePNM function in file lib/extras/dec/pnm.cc.

CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://github.com/libjxl/libjxl/issues/4337https://github.com/libjxl/libjxl/pull/4338https://github.com/sigdevel/pocs/blob/main/res/libjxl/2025/2https://infosec.exchange/@sigdevel/116642233929409910http://www.openwall.com/lists/oss-security/2026/05/30/7https://github.com/libjxl/libjxl/issues/4337