Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

Ubuntu 26.04 libjxl Moderate DoS Crash USN-8397-1 CVE-2025-70103

ubuntu
Calendar Grey June 8, 2026
Scroller Ubuntu
The libjxl in Ubuntu may crash or run unintended programs due to crafted files; updates are urged for safety.
libjxl could be made to crash or run programs if it opened a specially crafted file.

Summary

libjxl could be made to crash or run programs if it opened a specially

crafted file.

Software Description:

- jpeg-xl: Reference codec implementation for JPEG XL compressed raster image format

Details:

It was discovered that libjxl did not properly handle certain crafted PBM

images. An attacker could possibly use this issue to cause libjxl to crash,

resulting in a denial of service, or execute arbitrary code.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 26.04 LTS
  libjxl-tools                    0.11.1-6ubuntu4.2
  libjxl0.11                      0.11.1-6ubuntu4.2

Ubuntu 25.10
  libjxl-tools                    0.11.1-6ubuntu1.2
  libjxl0.11                      0.11.1-6ubuntu1.2

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-8397-1

CVE-2025-70103

Severity
moderate
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-8397-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.