15 matches found
MGASA-2024-0374 Updated zbar packages fix security vulnerabilities
A heap-based buffer overflow exists in the qrreadermatchcenters function of ZBar 0.23.90. Specially crafted QR codes may lead to information disclosure and/or arbitrary code execution. To trigger this vulnerability, an attacker can digitally input the malicious QR code, or prepare it to be...
Updated zbar packages fix security vulnerabilities
A heap-based buffer overflow exists in the qrreadermatchcenters function of ZBar 0.23.90. Specially crafted QR codes may lead to information disclosure and/or arbitrary code execution. To trigger this vulnerability, an attacker can digitally input the malicious QR code, or prepare it to be...
Ubuntu: Security Advisory (USN-7118-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS : ZBar vulnerabilities (USN-7118-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7118-1 advisory. It was discovered that ZBar did not properly handle certain QR codes. If a user or automated system using ZBar were...
Debian: Security Advisory (DSA-5614-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 38 : zbar (2024-583e4098b9)
The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-583e4098b9 advisory. 0.23.93, fixes for two CVEs Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has n...
Fedora 39 : zbar (2024-73d5220ed3)
The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-73d5220ed3 advisory. 0.23.93, fixes for two CVEs Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has n...
SUSE SLED15: libzbar-devel / libzbar0 / libzbar0-32bit / libzbarqt-devel / etc (SUSE-SU-2023:4948-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4948-1 advisory. - CVE-2023-40889: Fixed heap-based buffer overflow in the qrreadermatchcenters function...
Debian: Security Advisory (DLA-3675-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Medium: zbar
Issue Overview: A heap-based buffer overflow exists in the qrreadermatchcenters function of ZBar 0.23.90. Specially crafted QR codes may lead to information disclosure and/or arbitrary code execution. To trigger this vulnerability, an attacker can digitally input the malicious QR code, or prepare...
Debian dla-3675 : libbarcode-zbar-perl - security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3675 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3675-1 [email protected]...
[SECURITY] [DLA 3675-1] zbar security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3675-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès November 30, 2023 https://wiki.debian.org/LTS -...
CVE-2023-40890
creationtimestamp| type| source ---|---|--- 2023-08-29 20:17:47+00:00| seen| https://t.me/cibsecurity/69368 2025-07-01 14:11:19+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/20032...
CVE-2023-40890
A stack-based buffer overflow vulnerability exists in the lookupsequence function of ZBar 0.23.90. Specially crafted QR codes may lead to information disclosure and/or arbitrary code execution. To trigger this vulnerability, an attacker can digitally input the malicious QR code, or prepare it to ...
CVE-2023-40890
Summary: CVE-2023-40890 affects ZBar 0.23.90 and describes a stack-based buffer overflow in the lookup_sequence function. Attackers can trigger via specially crafted QR codes scanned by vulnerable hardware/software, with potential information disclosure and arbitrary code execution as indicated b...