Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

openSUSE 2026-0107-1 libjxl Moderate Vulnerability Fix CVE-2025-12474

opensuse
Calendar Grey March 30, 2026
Dist Opensuse Esm H88
openSUSE update addresses a moderate security flaw in libjxl, enhancing system safety through recommended patches.
An update that fixes one vulnerability is now available.

Description

This update for libjxl fixes the following issues:

- Update to release 0.8.5 (boo#1258090):

* fix tile dimension in low memory rendering pipeline [CVE-2025-12474].

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Backports SLE-15-SP6:

zypper in -t patch openSUSE-2026-107=1

Package List

- openSUSE Backports SLE-15-SP6 (aarch64 i586 s390x x86_64):

gdk-pixbuf-loader-jxl-0.8.5-bp156.3.6.1

gimp-plugin-jxl-0.8.5-bp156.3.6.1

libjxl-devel-0.8.5-bp156.3.6.1

libjxl-tools-0.8.5-bp156.3.6.1

libjxl0_8-0.8.5-bp156.3.6.1

- openSUSE Backports SLE-15-SP6 (aarch64_ilp32):

libjxl0_8-64bit-0.8.5-bp156.3.6.1

- openSUSE Backports SLE-15-SP6 (x86_64):

libjxl0_8-32bit-0.8.5-bp156.3.6.1

- openSUSE Backports SLE-15-SP6 (noarch):

jxl-thumbnailer-0.8.5-bp156.3.6.1

References

https://www.suse.com/security/cve/CVE-2025-12474.html

https://bugzilla.suse.com/1258090

Announcement ID: openSUSE-SU-2026:0107-1
Rating: moderate
Affected Products: openSUSE Backports SLE-15-SP6

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here