Lucene search
MitreCVELIST:CVE-2023-40889HistoryAug 29, 2023 - 12:00 a.m.
CVE-2023-40889
2023-08-2900:00:00
mitre
www.cve.org
3
heap-based buffer overflow
zbar 0.23.90
qr_reader_match_centers
information disclosure
arbitrary code execution
qr codes
attacker
vulnerability
scanner
A heap-based buffer overflow exists in the qr_reader_match_centers function of ZBar 0.23.90. Specially crafted QR codes may lead to information disclosure and/or arbitrary code execution. To trigger this vulnerability, an attacker can digitally input the malicious QR code, or prepare it to be physically scanned by the vulnerable scanner.
References
hackmd.io/%40cspl/B1ZkFZv23
lists.debian.org/debian-lts-announce/2023/12/msg00001.html
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/25LZZQJGGZRPLKTRNRNOTAFQJIPS7WRP/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DC7V5YCLCPB36J2KY6WLZCABFLBRB665/
Related
osv
osv
Heap-based buffer overflow in ZBar
2023-08-29 18:31:53
CVE-2023-40889
2023-08-29 17:15:12
zbar - security update
2023-11-30 00:00:00
prion
prion
Heap overflow
2023-08-29 17:15:00
alpinelinux
alpinelinux
CVE-2023-40889
2023-08-29 17:15:12
ubuntucve
ubuntucve
CVE-2023-40889
2023-08-29 00:00:00
nvd
nvd
CVE-2023-40889
2023-08-29 17:15:12
veracode
veracode
Heap-based Buffer Overflow
2023-09-06 07:39:19
github
github
Heap-based buffer overflow in ZBar
2023-08-29 18:31:53
cve
cve
CVE-2023-40889
2023-08-29 17:15:12
debiancve
debiancve
CVE-2023-40889
2023-08-29 17:15:12
nessus
nessus
Fedora 39 : zbar (2024-73d5220ed3)
2024-01-18 00:00:00
Debian dsa-5614 : gir1.2-zbar-1.0 - security update
2024-02-03 00:00:00
Debian DLA-3675-1 : zbar - LTS security update
2023-12-04 00:00:00
openvas
openvas
Fedora: Security Advisory for zbar (FEDORA-2024-73d5220ed3)
2024-01-18 00:00:00
Fedora: Security Advisory for zbar (FEDORA-2024-583e4098b9)
2024-01-18 00:00:00
Debian: Security Advisory (DLA-3675-1)
2023-12-05 00:00:00
debian
debian
[SECURITY] [DLA 3675-1] zbar security update
2023-12-01 10:30:42
[SECURITY] [DSA 5614-1] zbar security update
2024-02-03 17:00:19
fedora
fedora
[SECURITY] Fedora 38 Update: zbar-0.23.93-1.fc38
2024-01-18 01:26:27
[SECURITY] Fedora 39 Update: zbar-0.23.93-1.fc39
2024-01-18 01:47:05
amazon
amazon
Medium: zbar
2023-11-10 17:32:00