Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2023-2618

Опубликовано: 10 мая 2023
Источник: redhat
CVSS3: 7.5
EPSS Низкий

Описание

A vulnerability, which was classified as problematic, has been found in OpenCV wechat_qrcode Module up to 4.7.0. Affected by this issue is the function DecodedBitStreamParser::decodeHanziSegment of the file qrcode/decoder/decoded_bit_stream_parser.cpp. The manipulation leads to memory leak. The attack may be launched remotely. The name of the patch is 2b62ff6181163eea029ed1cab11363b4996e9cd6. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-228548.

Отчет

The OpenCV packages as shipped with Red Hat Enterprise Linux 6, 7 and 8 versions are not affected by this issue as Red Hat doesn't ship wechat_qrcode module within opencv-contrib package.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6opencvNot affected
Red Hat Enterprise Linux 7opencvNot affected
Red Hat Enterprise Linux 8opencvNot affected
Red Hat JBoss Enterprise Application Platform 6org.keycloak-keycloak-parentOut of support scope
Red Hat Single Sign-On 7org.keycloak-keycloak-parentNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=2214640OpenCV: memory leak in wechat_qrcode module

EPSS

Процентиль: 11%
0.00037
Низкий

7.5 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2023-2618

CVSS3: 5.3
ubuntu
больше 2 лет назад

A vulnerability, which was classified as problematic, has been found in OpenCV wechat_qrcode Module up to 4.7.0. Affected by this issue is the function DecodedBitStreamParser::decodeHanziSegment of the file qrcode/decoder/decoded_bit_stream_parser.cpp. The manipulation leads to memory leak. The attack may be launched remotely. The name of the patch is 2b62ff6181163eea029ed1cab11363b4996e9cd6. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-228548.

nvd логотип

CVE-2023-2618

CVSS3: 5.3
nvd
больше 2 лет назад

A vulnerability, which was classified as problematic, has been found in OpenCV wechat_qrcode Module up to 4.7.0. Affected by this issue is the function DecodedBitStreamParser::decodeHanziSegment of the file qrcode/decoder/decoded_bit_stream_parser.cpp. The manipulation leads to memory leak. The attack may be launched remotely. The name of the patch is 2b62ff6181163eea029ed1cab11363b4996e9cd6. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-228548.

debian логотип

CVE-2023-2618

CVSS3: 5.3
debian
больше 2 лет назад

A vulnerability, which was classified as problematic, has been found i ...

github логотип

GHSA-v2pm-rv6h-9g9p

CVSS3: 5.3
github
больше 2 лет назад

A vulnerability, which was classified as problematic, has been found in OpenCV wechat_qrcode Module up to 4.7.0. Affected by this issue is the function DecodedBitStreamParser::decodeHanziSegment of the file qrcode/decoder/decoded_bit_stream_parser.cpp. The manipulation leads to memory leak. The attack may be launched remotely. The name of the patch is 2b62ff6181163eea029ed1cab11363b4996e9cd6. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-228548.

EPSS

Процентиль: 11%
0.00037
Низкий

7.5 High

CVSS3