CVE-2025-70103

Published: Mag 27, 2026 Last Modified: Mag 27, 2026

ExploitDB:

Other exploit source:

Google Dorks:

Description

AI Translation Available

Heap buffer overflow vulnerability in libjxl 0.12.0 via crafted PBM images to the jxl::extras::DecodeImagePNM function in file lib/extras/dec/pnm.cc.

https://github.com/libjxl/libjxl/issues/4337

https://github.com/libjxl/libjxl/issues/4337

https://github.com/libjxl/libjxl/pull/4338

https://github.com/libjxl/libjxl/pull/4338

https://github.com/sigdevel/pocs/blob/main/res/libjxl/2025/2

https://github.com/sigdevel/pocs/blob/main/res/libjxl/2025/2

https://infosec.exchange/@sigdevel/116642233929409910

https://infosec.exchange/@sigdevel/116642233929409910