Exiv2 bmffimage.cpp BmffImage::boxHandler memory corruption 🚫 [False Positive]

Noticeinfo

⚠️ A vulnerability was suspected in Exiv2. This issue appears to be a false-positive. Please verify the sources mentioned and consider not using this entry at all. Vendor claims that this was fixed as the 8th commit on PR 2381, so it never even landed on the main (dev) branch, let alone one of the official releases.

Productinfo

Type

Name

License

Timelineinfo

10/27/2022 🔍
10/27/2022 +0 days 🔍
10/27/2022 +0 days 🔍
11/25/2022 +29 days 🔍

Sourcesinfo

Advisory: a58e52ed702d3bc7b8bab7ec1d70a4849eebece3
False Positive: Yes
Disputed: 🔍

CVE: CVE-2022-3717 (🔍)
See also: 🔍

Entryinfo

Created: 10/27/2022 11:42 AM
Updated: 11/25/2022 05:23 PM
Changes: 10/27/2022 11:42 AM (41), 11/21/2022 12:57 PM (3), 11/21/2022 01:10 PM (2), 11/25/2022 05:15 PM (1), 11/25/2022 05:23 PM (1)
Complete: 🔍
Cache ID: 3:3AC:40

Discussion

No comments yet. Languages: en.

Please log in to comment.

Want to stay up to date on a daily basis?

Enable the mail alert feature now!