CNNVD-202602-1910 Information

CNNVD ID

CNNVD-202602-1910

Related CVE

CVE-2026-1837

• CNNVD Published: 2026-02-11

Description (Chinese)

libjxl是libjxl开源的一个 JPEG XL 图像格式参考实现。 libjxl存在安全漏洞，该漏洞源于解码器在处理特制文件时可能将像素数据写入未初始化的未分配内存，可能导致信息泄露。

Description (English)

libjxl is a JPEG XL image reference from libjxl open source. Libjxl has a security loophole, which stems from the possibility that pixel data may be included in the uninitiated undistributed memory of the decoding device when dealing with a special file, which may lead to the disclosure of information.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

libjxl

Published

2026-02-11

Last Modified

2026-02-24

References

https://github.com/libjxl/libjxl/issues/4549 https://access.redhat.com/security/cve/cve-2026-1837

Patch

https://github.com/libjxl/libjxl/releases