| 제목 | OpenCV wechat_qrcode module has Memory Leak |
|---|
| 설명 | Vulnerability in the wechat_qrcode module of OpenCV's extra modules.
Supported versions that are affected are 4.5.2 to 4.7.0.
An attacker can trigger a memory leak in the wechat_qrcode module by constructing a special QR code, which will cause the program using the module to go out of memory and exit abnormally if repeated multiple times.
CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L). |
|---|
| 원천 | ⚠️ https://github.com/opencv/opencv_contrib/pull/3484 |
|---|
| 사용자 | NanoApe (UID 46329) |
|---|
| 제출 | 2023. 05. 09. PM 06:13 (3 연령 ago) |
|---|
| 모더레이션 | 2023. 05. 10. AM 07:06 (13 hours later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 228548 [OpenCV wechat_qrcode Module 까지 4.7.0 decoded_bit_stream_parser.cpp decodeHanziSegment 서비스 거부] |
|---|
| 포인트들 | 20 |
|---|