vulnerability

Red Hat: CVE-2023-39976: Buffer overflow in log_blackbox.c (Multiple Advisories)

Name: Red Hat: CVE-2023-39976: Buffer overflow in log_blackbox.c (Multiple Advisories)
Creator: Red Hat
Published: 2023-08-08T00:00:00.000Z
Keywords: CVE, CWE-120, Red Hat, 2023, 39976, Buffer overflow in log_blackbox.c (Multiple Advisories), redhat-upgrade-doxygen2man-debuginfo, redhat-upgrade-libqb, redhat-upgrade-libqb-debuginfo, redhat-upgrade-libqb-debugsource, redhat-upgrade-libqb-devel, redhat-upgrade-libqb-tests-debuginfo, Severity 8

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:L/Au:M/C:C/I:C/A:C)

Published

Aug 8, 2023

Added

Oct 11, 2023

Modified

Mar 27, 2026

Description

log_blackbox.c in libqb before 2.0.8 allows a buffer overflow via long log messages because the header size is not considered.

Solutions

redhat-upgrade-doxygen2man-debuginforedhat-upgrade-libqbredhat-upgrade-libqb-debuginforedhat-upgrade-libqb-debugsourceredhat-upgrade-libqb-develredhat-upgrade-libqb-tests-debuginfo

References

CWE-120
EUVD-EUVD-2023-43669
NVD-CVE-2023-39976
REDHAT-RHSA-2023:5597
REDHAT-RHSA-2023:6578
REDHAT-RHSA-2023:7376
https://euvd.enisa.europa.eu/vulnerability/EUVD-2023-43669

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report