Lucene search
Ubuntu.comUB:CVE-2022-3756HistoryOct 29, 2022 - 12:00 a.m.
CVE-2022-3756
2022-10-2900:00:00
ubuntu.com
ubuntu.com
15
exiv2
quicktime video handler
integer overflow
remote attack
patch
vdb-212496
0 Low
EPSS
Percentile
0.0%
A vulnerability was found in Exiv2. It has been classified as critical.
Affected is the function QuickTimeVideo::userDataDecoder of the file
quicktimevideo.cpp of the component QuickTime Video Handler. The
manipulation leads to integer overflow. It is possible to launch the attack
remotely. The name of the patch is
bf4f28b727bdedbd7c88179c30d360e54568a62e. It is recommended to apply a
patch to fix this issue. The identifier of this vulnerability is
VDB-212496.
Notes
| Author | Note |
|---|---|
| mdeslaur | This CVE was rejected |
Related
redhatcve
redhatcve
CVE-2022-3756
2022-11-11 04:55:58
prion
prion
Design/Logic Flaw
2022-10-29 17:15:00
mageia
mageia
Updated exiv2 packages fix security vulnerability
2022-11-13 05:25:20
nvd
nvd
CVE-2022-3756
2022-10-29 17:15:09
cve
cve
CVE-2022-3756
2022-10-29 17:15:09
cvelist
cvelist
CVE-2022-3756
1976-01-01 00:00:00
debiancve
debiancve
CVE-2022-3756
2022-10-29 17:15:00
veracode
veracode
Buffer Overflow
2022-11-01 05:54:29
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0420)
2022-11-14 00:00:00
nessus
nessus
Debian DLA-3186-1 : exiv2 - LTS security update
2022-11-11 00:00:00
RHEL 7 : exiv2 (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 6 : exiv2 (Unpatched Vulnerability)
2024-05-11 00:00:00
debian
debian
[SECURITY] [DLA 3186-1] exiv2 security update
2022-11-10 14:49:10
redos
redos
ROS-20221009-01
2022-10-09 00:00:00