PT-2026-43994 · Libjxl · Libjxl

Published

2026-05-27

Updated

2026-06-08

CVE-2025-70103

CVSS v3.1

7.3

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions libjxl version 0.12.0

Description A heap buffer overflow occurs when processing crafted PBM images. The issue is located in the jxl::extras::DecodeImagePNM() function within the lib/extras/dec/pnm.cc file.

Recommendations Update libjxl to the version provided in the libjxl-devel-0.11.2-2.1 package or newer.

Exploit

Fix

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-122

Related Identifiers

CVE-2025-70103

ECHO-70E5-AB74-3FEC

OPENSUSE-SU-2026:10910-1

OPENSUSE-SU-2026:10935-1

OPENSUSE-SU-2026:10955-1

USN-8397-1

Affected Products

Libjxl

PT-2026-43994 · Libjxl · Libjxl

CVE-2025-70103

Weakness Enumeration

Related Identifiers

Affected Products

References · 20