CVE-2022-39908

TOCTOU vulnerability in Samsung decoding library for video thumbnails prior to SMR Dec-2022 Release 1 allows local attacker to perform Out-Of-Bounds Write.

• https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=12
  Vendor Advisory
• https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=12
  Vendor Advisory