Exiv2 QuickTime Video quicktimevideo.cpp userDataDecoder heap-based overflow 🚫 [False-Positive]
A vulnerability has been found in Exiv2 and classified as critical. Further investigation has shown that this issues is a false-positive. Please review the sources mentioned and consider not using this entry at all. The real existence of this vulnerability is still doubted at the moment. Issue was introduced on the main (dev) branch and fixed shortly afterwards, so none of the official releases were ever affected.
Timeline10/27/2022 Advisory disclosed
10/27/2022 +0 days CVE reserved
10/27/2022 +0 days VulDB entry created
11/25/2022 +29 days VulDB last update
CVE: CVE-2022-3719 (🔒)
EntryCreated: 10/27/2022 11:47 AM
Updated: 11/25/2022 05:53 PM
Changes: 10/27/2022 11:47 AM (41), 11/21/2022 01:11 PM (4), 11/25/2022 05:46 PM (2), 11/25/2022 05:53 PM (1)
Do you need the next level of professionalism?
Upgrade your account now!
No comments yet. Languages: en.
Please log in to comment.