Samsung SMR is a system patch package from South Koreaβs Samsung (Samsung). It provides patches for Samsung mobile applications. buffer overflow vulnerability exists in versions prior to Samsung SMR Apr-2022 Release 1, which stems from incorrect size checking in the sapefd_parse_meta_HEADER function of the libsapeextractor library. An attacker could exploit this vulnerability to perform an out-of-bounds read via a specially crafted media file.