CVE-2025-70103 | THREATINT

Description

Heap buffer overflow vulnerability in libjxl 0.12.0 via crafted PBM images to the jxl::extras::DecodeImagePNM function in file lib/extras/dec/pnm.cc.

PUBLISHED Reserved 2026-01-09 | Published 2026-05-27 | Updated 2026-05-30 | Assigner mitre

References

github.com/libjxl/libjxl/issues/4337 exploit

www.openwall.com/lists/oss-security/2026/05/30/7

github.com/libjxl/libjxl/issues/4337

github.com/libjxl/libjxl/pull/4338

github.com/sigdevel/pocs/blob/main/res/libjxl/2025/2

infosec.exchange/@sigdevel/116642233929409910

cve.org (CVE-2025-70103)

nvd.nist.gov (CVE-2025-70103)

Download JSON

help @ threatint.eu