Invalid JPEG XL images using libjxl can cause an out of bounds access on a std::vector<std::vector<T>> when rendering splines. The OOB read access can either lead to a segfault, or rendering splines based on other process memory. It is recommended to upgrade past 0.6.0 or patch with https://github.com/libjxl/libjxl/pull/757
References
Link | Resource |
---|---|
https://github.com/libjxl/libjxl/issues/735 | Exploit Issue Tracking Patch Third Party Advisory |
https://github.com/libjxl/libjxl/pull/757 | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Google
Published: 2021-10-14T00:00:00
Updated: 2021-11-01T13:10:13
Reserved: 2021-01-05T00:00:00
Link: CVE-2021-22563
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-11-01T13:15:07.657
Modified: 2021-11-03T15:10:25.130
Link: CVE-2021-22563
JSON object: View
Redhat Information
No data.