OSV-2021-916

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libjxl/OSV-2021-916.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2021-916
Published
2021-07-04T00:00:13.274805Z
Modified
2022-04-13T03:04:41.822581Z
Summary
Use-of-uninitialized-value in jxl::ModularFrameDecoder::DecodeAcMetadata
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35778

Crash type: Use-of-uninitialized-value
Crash state:
jxl::ModularFrameDecoder::DecodeAcMetadata
jxl::FrameDecoder::ProcessDCGroup
jxl::ThreadPool::RunCallState<jxl::Status
References

Affected packages

OSS-Fuzz / libjxl

Package

Name
libjxl
Purl
pkg:generic/libjxl

Affected ranges

Type
GIT
Repo
https://github.com/libjxl/libjxl.git
Events
Introduced
42d9f78fce38e2f97c675d03b6a19ccc6bee7d39
Fixed
f8dd198a2d8ad4f4fccd591349a384bc0eff5ec9

Ecosystem specific 

{
    "severity": "MEDIUM"
}