{"id":"OSV-2022-608","summary":"Heap-use-after-free in jxl::WriteToPixelCallbackStage::ProcessRow","details":"OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=49277\n\n```\nCrash type: Heap-use-after-free READ 4\nCrash state:\njxl::WriteToPixelCallbackStage::ProcessRow\njxl::LowMemoryRenderPipeline::RenderRect\njxl::LowMemoryRenderPipeline::ProcessBuffers\n```\n","modified":"2026-04-03T14:18:43.441719Z","published":"2022-07-21T00:01:50.967627Z","references":[{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=49277"}],"affected":[{"package":{"name":"libjxl","ecosystem":"OSS-Fuzz","purl":"pkg:generic/libjxl"},"ranges":[{"type":"GIT","repo":"https://github.com/libjxl/libjxl.git","events":[{"introduced":"eafb38fb4f3d2e00f9402a0c09ac592ebfd6a795"}]}],"versions":["v0.7-base","v0.7rc","v0.7.0","v1.0-snapshot","v0.8-snapshot","v0.8.0rc1","v0.8.0","v0.8.1","v0.9-snapshot","v0.8.2","v0.9.0","v0.9.1","v0.9.2","v0.10.0","v0.10-snapshot","v0.10.1","v0.10.2","v0.10.3","v0.8.3","v0.9.3","v0.7.1","v0.11-snapshot","v0.11.0","v0.10.4","v0.11.1","v0.8.4","v0.9.4","v0.7.2","v0.7.3","v0.10.5","v0.11.2","v0.8.5","v0.9.5"],"ecosystem_specific":{"severity":"HIGH"},"database_specific":{"source":"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libjxl/OSV-2022-608.yaml"}}],"schema_version":"1.7.5"}