Lucene search
MitreCVELIST:CVE-2023-40890HistoryAug 29, 2023 - 12:00 a.m.
CVE-2023-40890
2023-08-2900:00:00
mitre
www.cve.org
4
buffer overflow
zbar
qr code
information disclosure
code execution
vulnerability
scanner
A stack-based buffer overflow vulnerability exists in the lookup_sequence function of ZBar 0.23.90. Specially crafted QR codes may lead to information disclosure and/or arbitrary code execution. To trigger this vulnerability, an attacker can digitally input the malicious QR code, or prepare it to be physically scanned by the vulnerable scanner.
References
hackmd.io/%40cspl/H1PxPAUnn
lists.debian.org/debian-lts-announce/2023/12/msg00001.html
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/25LZZQJGGZRPLKTRNRNOTAFQJIPS7WRP/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DC7V5YCLCPB36J2KY6WLZCABFLBRB665/
Related
debiancve
debiancve
CVE-2023-40890
2023-08-29 17:15:12
cve
cve
CVE-2023-40890
2023-08-29 17:15:12
osv
osv
CVE-2023-40890
2023-08-29 17:15:12
zbar - security update
2023-11-30 00:00:00
zbar - security update
2024-02-03 00:00:00
alpinelinux
alpinelinux
CVE-2023-40890
2023-08-29 17:15:12
ubuntucve
ubuntucve
CVE-2023-40890
2023-08-29 00:00:00
veracode
veracode
Heap-based Buffer Overflow
2023-09-06 07:58:49
prion
prion
Stack overflow
2023-08-29 17:15:00
nvd
nvd
CVE-2023-40890
2023-08-29 17:15:12
fedora
fedora
[SECURITY] Fedora 38 Update: zbar-0.23.93-1.fc38
2024-01-18 01:26:27
[SECURITY] Fedora 39 Update: zbar-0.23.93-1.fc39
2024-01-18 01:47:05
openvas
openvas
Fedora: Security Advisory for zbar (FEDORA-2024-583e4098b9)
2024-01-18 00:00:00
Debian: Security Advisory (DSA-5614-1)
2024-02-05 00:00:00
Debian: Security Advisory (DLA-3675-1)
2023-12-05 00:00:00
nessus
nessus
Debian DLA-3675-1 : zbar - LTS security update
2023-12-04 00:00:00
Fedora 38 : zbar (2024-583e4098b9)
2024-01-18 00:00:00
debian
debian
[SECURITY] [DLA 3675-1] zbar security update
2023-12-01 10:30:42
[SECURITY] [DSA 5614-1] zbar security update
2024-02-03 17:00:19
amazon
amazon
Medium: zbar
2023-11-10 17:32:00