Browse all 3 CVE security advisories affecting Libjxl. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Libjxl is an open-source JPEG XL image codec library primarily used for encoding and decoding images in the JPEG XL format. Historically, it has been vulnerable to remote code execution (RCE) and denial-of-service (DoS) flaws, often through crafted image files that trigger memory corruption. The library's security focus includes robust input validation and memory safety measures. With three CVEs on record, vulnerabilities have typically involved buffer overflows and integer overflows during image processing. While no major public incidents have been widely reported, the library's security posture remains under active scrutiny due to its handling of untrusted image data in web browsers and other applications.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-11403 | Out of Bounds Memory Read/Write in libjxl — libjxlCWE-787 | 8.8 | - | 2024-11-25 |
| CVE-2024-11498 | Resource exhaustion via Stack overflow in libjxl — libjxlCWE-400 | 6.5 | - | 2024-11-25 |
| CVE-2023-0645 | Out of Bounds read in libjxl — LibjxlCWE-125 | 5.3 | Medium | 2023-04-11 |
This page lists every published CVE security advisory associated with Libjxl. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.