LZ4 up to 1.10.0 lib/lz4frame.c LZ4F_createCDict_advanced null byte or nul character 🚫 [False Positive]

Noticeinfo

⚠️ This issue is likely a false positive. Please verify the cited sources and consider not including this entry.

Productinfo

Name

• LZ4

Version

• 1.0
• 1.1
• 1.2
• 1.3
• 1.4
• 1.5
• 1.6
• 1.7
• 1.8
• 1.9
• 1.10.0

License

• open-source

Website

• Product: https://github.com/lz4/lz4/

Timelineinfo

10/23/2025 Advisory disclosed
10/23/2025 +0 days CVE reserved
10/23/2025 +0 days VulDB entry created
10/29/2025 +6 days VulDB entry last update

Sourcesinfo

Product: github.com

Advisory: github.com
False Positive: Yes

CVE: CVE-2025-62813 (🔒)
GCVE (CVE): GCVE-0-2025-62813
GCVE (VulDB): GCVE-100-329629
EUVD: 🔒
CNNVD: CNNVD-202510-3275 - LZ4 安全漏洞

Entryinfo

Created: 10/23/2025 06:39
Updated: 10/29/2025 07:24
Changes: 10/23/2025 06:39 (64), 10/23/2025 10:56 (1), 10/25/2025 04:26 (6), 10/25/2025 18:03 (1), 10/26/2025 15:30 (1), 10/28/2025 15:49 (2), 10/29/2025 07:24 (3)
Complete: 🔍
Cache ID: 216::103

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Discussion

Do you know our Splunk app?

Download it now for free!