CVE-2025-4638

Published: 05/14/2025 18:15:33
A vulnerability exists in the inftrees.c component of the zlib library, which is bundled within the PointCloudLibrary (PCL). This issue may allow context-dependent attackers to cause undefined behavior by exploiting improper pointer arithmetic. Since version 1.14.0, PCL by default uses a zlib installation from the system, unless the user sets WITH_SYSTEM_ZLIB=FALSE. So this potential vulnerability is only relevant if the PCL version is older than 1.14.0 or the user specifically requests to not use the system zlib.
Unknown
CVSS v2:

Status

DocFilters Release Package State Justification Comment
0.0.0.1 zlib (1.3) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
25.2 zlib (1.3) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
25.1.1 zlib (1.3) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
25.1 zlib (1.3) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
24.4 zlib (1.3) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
24.4.0 zlib (1.3) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
24.3 zlib (1.3) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
24.2.1 zlib (1.3) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
24.2 zlib (1.3) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
24.1 zlib (1.3) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
23.3 zlib (1.3) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
23.2.1 zlib (1.2.12) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
23.2 zlib (1.2.12) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
23.1 zlib (1.2.12) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
22.4 zlib (1.2.12) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
22.3 zlib (1.2.12) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
22.2 zlib (1.2.12) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
22.1 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
21.11.1 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
21.11 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
21.8.1 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
21.8 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
21.5.1 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
21.5.0 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
21.2.0 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
11.4.20 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
11.4.19.3667 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
11.4.18.3599 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
11.4.17 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
11.4.16.3445 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
11.4.15.3368 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
11.4.14.3263 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
11.4.13.3179 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
11.4.12.3054 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
11.4.11.3040 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
11.4.11.2990 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
11.4.10.2934 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
11.4.9.2878 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.
11.4.8.2822 zlib (1.2.11) False Positive Code Not Present The issue is specific to the PointCloudLibrary, which uses a modified version of the ZLib library. This issue does not affect Document Filters.

Severity score breakdown

References