Exiv2 QuickTime Video quicktimevideo.cpp userDataDecoder integer overflow 🚫 [False-Positive]

Noticeinfo

A vulnerability was found in Exiv2. It has been classified as critical. This issue appears to be a false-positive. Please verify the sources mentioned and consider not using this entry at all. The real existence of this vulnerability is still doubted at the moment. Issue was introduced on the main (dev) branch and fixed shortly afterwards, so none of the official releases were ever affected.

Productinfo

Type

Name

License

  • free

Timelineinfo

10/29/2022 Advisory disclosed
10/29/2022 +0 days CVE reserved
10/29/2022 +0 days VulDB entry created
11/26/2022 +28 days VulDB last update

Sourcesinfo

Advisory: bf4f28b727bdedbd7c88179c30d360e54568a62e
Status: Confirmed
False-Positive: Yes
Disputed: 🔍

CVE: CVE-2022-3756 (🔒)

Entryinfo

Created: 10/29/2022 05:21 PM
Updated: 11/26/2022 02:13 PM
Changes: 10/29/2022 05:21 PM (42), 11/21/2022 01:11 PM (4), 11/26/2022 02:12 PM (1), 11/26/2022 02:13 PM (1)
Complete: 🔍

Discussion

No comments yet. Languages: en.

Please log in to comment.

Do you want to use VulDB in your project?

Use the official API to access entries easily!