19 matches found
Ubuntu: Security Advisory (USN-7637-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 24.04 LTS : libjxl vulnerabilities (USN-7637-1)
The remote Ubuntu 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7637-1 advisory. It was discovered that libjxl did not perform proper bounds checking when parsing Exif tags. An attacker could possibly use this issue to cause libjxl to...
SUSE SLES15 Security Update : libjxl (SUSE-SU-2025:01883-1)
The remote SUSE Linux SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:01883-1 advisory. - CVE-2024-11403: Fix out of bounds memory read/write in libjxl bsc1233768. Tenable has extracted the preceding description block directly from the SU...
SUSE-SU-2025:01883-1 Security update for libjxl
This update for libjxl fixes the following issues: - CVE-2024-11403: Fix out of bounds memory read/write in libjxl bsc1233768...
openSUSE 15 Security Update : libjxl (openSUSE-SU-2025:0139-1)
The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2025:0139-1 advisory. - Update to release 0.8.4 Huffman lookup table size fix CVE-2024-11403 Check height limit in modular trees CVE-2024-11498 Tenable has extracted t...
OPENSUSE-SU-2025:0139-1 Security update for libjxl
This update for libjxl fixes the following issues: - Update to release 0.8.4 Huffman lookup table size fix CVE-2024-11403 Check height limit in modular trees CVE-2024-11498...
Security update for libjxl (moderate)
openSUSE Security Update: Security update for libjxl Announcement ID: openSUSE-SU-2025:0139-1 Rating: moderate References: 1233768 1233785 Cross-References: CVE-2024-11403 CVE-2024-11498 CVSS scores: CVE-2024-11403 SUSE: 6.7 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:L CVE-2024-11498 SUSE: 5.7...
Amazon Linux 2 : thunderbird (ALAS-2025-2830)
The version of thunderbird installed on the remote host is prior to 128.8.1-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2830 advisory. There exists an out of bounds read/write in LibJXL versions prior to commit 9cc451b91b74ba470fd72bd48c121e9f33d24c99...
Linux Distros Unpatched Vulnerability : CVE-2024-11403
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There exists an out of bounds read/write in LibJXL versions prior to commit 9cc451b91b74ba470fd72bd48c121e9f33d24c99. The JPEG decoder used by the JPEG XL encod...
Mageia: Security Advisory (MGASA-2025-0008)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated libjxl packages fix security vulnerabilities
Out of Bounds Memory Read/Write in libjxl. CVE-2024-11403 Resource exhaustion via Stack overflow in libjxl. CVE-2024-11498...
Security update for mozjs115
This update for mozjs115 fixes the following issues: CVE-2024-11498: Fixed resource exhaustion via Stack overflow in libjxl bsc1233786 CVE-2024-11403: Fixed out of Bounds Memory Read/Write in libjxl bsc1233766 CVE-2024-50602: Fixed DoS via XMLResumeParser in libexpat bsc1232602 Patch Instructions...
openSUSE 15 Security Update : qt6-webengine (openSUSE-SU-2024:0402-1)
The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2024:0402-1 advisory. - CVE-2024-11403: Fixed out of bounds memory read/write in libjxl boo1233764 Tenable has extracted the preceding description block directly from the SUSE...
openSUSE Security Advisory (openSUSE-SU-2024:0402-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OPENSUSE-SU-2024:0402-1 Security update for qt6-webengine
This update for qt6-webengine fixes the following issues: - CVE-2024-11403: Fixed out of bounds memory read/write in libjxl boo1233764...
Security update for qt6-webengine (moderate)
openSUSE Security Update: Security update for qt6-webengine Announcement ID: openSUSE-SU-2024:0402-1 Rating: moderate References: 1233764 Cross-References: CVE-2024-11403 CVSS scores: CVE-2024-11403 SUSE: 6.7 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:L Affected Products: openSUSE Backports...
CVE-2024-11403 Out of Bounds Memory Read/Write in libjxl
There exists an out of bounds read/write in LibJXL versions prior to commit 9cc451b91b74ba470fd72bd48c121e9f33d24c99. The JPEG decoder used by the JPEG XL encoder when doing JPEG recompression i.e. if using JxlEncoderAddJPEGFrame on untrusted input does not properly check bounds in the presence o...
CVE-2024-11403
CVE-2024-11403 involves an out-of-bounds read/write in LibJXL’s JPEG decoder used for recompression (JxlEncoderAddJPEGFrame) and also affects jpegli. The vulnerability arises when processing incomplete codes, allowing out-of-bounds writes and potentially causing reads of uninitialized memory or f...
CVE-2024-11403
There exists an out of bounds read/write in LibJXL versions prior to commit 9cc451b91b74ba470fd72bd48c121e9f33d24c99. The JPEG decoder used by the JPEG XL encoder when doing JPEG recompression i.e. if using JxlEncoderAddJPEGFrame on untrusted input does not properly check bounds in the presence o...