漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Memory Overread in libjxl
Vulnerability Description
Invalid JPEG XL images using libjxl can cause an out of bounds access on a std::vector<std::vector<T>> when rendering splines. The OOB read access can either lead to a segfault, or rendering splines based on other process memory. It is recommended to upgrade past 0.6.0 or patch with https://github.com/libjxl/libjxl/pull/757
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
缓冲区上溢读取
Vulnerability Title
Github libjxl 缓冲区错误漏洞
Vulnerability Description
Github libjxl是一个PEG XL(编码器和解码器)的参考实现。 libjxl 存在缓冲区错误漏洞,该漏洞源于当渲染样条时,使用libjxl的无效JPEG XL图像可能会导致对std::vector<std::vector<T>>的越界访问。OOB读访问可能导致段错误,或者基于其他进程内存渲染样条。
CVSS Information
N/A
Vulnerability Type
N/A