Vulnerabilities > CVE-2021-28026 - Out-of-bounds Write vulnerability in Jpeg Jpeg-Xl 0.3.2
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
jpeg-xl v0.3.2 is affected by a heap buffer overflow in /lib/jxl/coeff_order.cc ReadPermutation. When decoding a malicous jxl file using djxl, an attacker can trigger arbitrary code execution or a denial of service.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |