CVE-2022-4899 – zstd: mysql: buffer overrun in util.c

https://notcve.org/view.php?id=CVE-2022-4899

31 Mar 2023 — A vulnerability was found in zstd v1.4.10, where an attacker can supply empty string as an argument to the command line tool to cause buffer overrun. Se encontró una vulnerabilidad en zstd v1.4.10, donde un atacante puede proporcionar una cadena vacía como argumento a la herramienta de línea de comando para provocar una saturación del búfer. A vulnerability was found in zstd. This flaw allows an attacker to supply an empty string as an argument to the command line tool to cause a buffer overrun. An update f... • https://github.com/facebook/zstd/issues/3200 • CWE-400: Uncontrolled Resource Consumption •