Exiv2 QuickTime Video quicktimevideo.cpp userDataDecoder integer overflow 🚫 [False-Positive]
Notice
A vulnerability was found in Exiv2. It has been classified as critical. This issue appears to be a false-positive. Please verify the sources mentioned and consider not using this entry at all. The real existence of this vulnerability is still doubted at the moment. Issue was introduced on the main (dev) branch and fixed shortly afterwards, so none of the official releases were ever affected.
Product
Type
Name
License
- free
Timeline
10/29/2022 Advisory disclosed10/29/2022 CVE reserved
10/29/2022 VulDB entry created
11/26/2022 VulDB last update
Sources
Advisory: bf4f28b727bdedbd7c88179c30d360e54568a62eStatus: Confirmed
False-Positive: Yes
Disputed: 🔍
CVE: CVE-2022-3756 (🔒)
Entry
Created: 10/29/2022 05:21 PMUpdated: 11/26/2022 02:13 PM
Changes: 10/29/2022 05:21 PM (42), 11/21/2022 01:11 PM (4), 11/26/2022 02:12 PM (1), 11/26/2022 02:13 PM (1)
Complete: 🔍
No comments yet. Languages: en.
Please log in to comment.