Vulnerabilities > Libjxl Project > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-19 | CVE-2022-34000 | Reachable Assertion vulnerability in Libjxl Project Libjxl 0.6.1 libjxl 0.6.1 has an assertion failure in LowMemoryRenderPipeline::Init() in render_pipeline/low_memory_render_pipeline.cc. | 6.5 |
| 2022-01-01 | CVE-2021-45928 | Out-of-bounds Write vulnerability in Libjxl Project Libjxl libjxl b02d6b9, as used in libvips 8.11 through 8.11.2 and other products, has an out-of-bounds write in jxl::ModularFrameDecoder::DecodeGroup (called from jxl::FrameDecoder::ProcessACGroup and jxl::ThreadPool::RunCallState<jxl::FrameDecoder::ProcessSections). | 5.5 |
| 2021-11-01 | CVE-2021-22563 | Out-of-bounds Read vulnerability in Libjxl Project Libjxl Invalid JPEG XL images using libjxl can cause an out of bounds access on a std::vector<std::vector<T>> when rendering splines. | 4.4 |
| 2021-11-01 | CVE-2021-22564 | Out-of-bounds Write vulnerability in Libjxl Project Libjxl For certain valid JPEG XL images with a size slightly larger than an integer number of groups (256x256 pixels) when processing the groups out of order the decoder can perform an out of bounds copy of image pixels from an image buffer in the heap to another. | 5.5 |
| 2021-08-30 | CVE-2021-36692 | Divide By Zero vulnerability in Libjxl Project Libjxl 0.3.7 libjxl v0.3.7 is affected by a Divide By Zero in issue in lib/extras/codec_apng.cc jxl::DecodeImageAPNG(). | 6.5 |