CVE-2023-42562

Name of the Vulnerable Software and Affected Versions libFacePreProcessingjni.camera.samsung.so versions prior to SMR Dec-2023 Release 1

Description The issue is related to an integer overflow vulnerability in the detectionFindFaceSupportMultiInstance function of the libFacePreProcessingjni.camera.samsung.so library. This vulnerability allows an attacker to trigger a heap overflow.

Recommendations For versions prior to SMR Dec-2023 Release 1, as a temporary workaround, consider disabling the detectionFindFaceSupportMultiInstance function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.