CVE-2025-12474
Public on 2026-02-11
Modified on 2026-02-12
Description
A specially-crafted file can cause libjxl's decoder to read pixel data from uninitialized (but allocated) memory.
This can be done by causing the decoder to reference an outside-image-bound area in a subsequent patches. An incorrect optimization causes the decoder to omit populating those areas.
This can be done by causing the decoder to reference an outside-image-bound area in a subsequent patches. An incorrect optimization causes the decoder to omit populating those areas.
CVSS v3 Base Score
See breakdown
Affected Packages
| Platform | Package | Release Date | Advisory | Status |
|---|---|---|---|---|
| Amazon Linux 2 - Firefox Extra | firefox | 2026-03-06 | ALAS2FIREFOX-2026-053 | Fixed |
| Amazon Linux 2023 | firefox | 2026-03-05 | ALAS2023-2026-1469 | Fixed |
| Amazon Linux 2023 | jpegxl | 2026-03-05 | ALAS2023-2026-1459 | Fixed |
| Amazon Linux 2 - Core | thunderbird | 2026-03-06 | ALAS2-2026-3190 | Fixed |
CVSS Scores
| Score Type | Score | Vector | |
|---|---|---|---|
| Amazon Linux | CVSSv3 | 3.1 | CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N |