All 7 CVE vulnerabilities found in libjxl, with AI-generated Chinese analysis, references, and POCs.
Vendor: Google LLC
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2025-12474 | libjxl: Uninitialized memory read in decoder due to incorrect optimization in patch handling CWE-908 | 4.3 | - | 2026-02-11 |
| CVE-2026-1837 | libjxl: Out-of-bounds write in grayscale color transformation when using LCMS2 CWE-805 | 8.1 | - | 2026-02-11 |
| CVE-2024-11403 | Out of Bounds Memory Read/Write in libjxl CWE-787 | 8.8 | - | 2024-11-25 |
| CVE-2024-11498 | Resource exhaustion via Stack overflow in libjxl CWE-400 | 6.5 | - | 2024-11-25 |
| CVE-2023-0645 | Out of Bounds read in libjxl CWE-125 | 5.3 | Medium | 2023-04-11 |
| CVE-2021-22564 | Out of bounds Copy in Libjxl in large image groups CWE-122 | 4.5 | Medium | 2021-11-01 |
| CVE-2021-22563 | Memory Overread in libjxl CWE-126 | 4.5 | Medium | 2021-11-01 |
All 7 known CVE vulnerabilities affecting libjxl with full Chinese analysis, references, and POCs where available.