CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 1CVE-2019-19624
https://notcve.org/view.php?id=CVE-2019-19624
An out-of-bounds read was discovered in OpenCV before 4.1.1. Specifically, variable coarsest_scale is assumed to be greater than or equal to finest_scale within the calc()/ocl_calc() functions in dis_flow.cpp. However, this is not true when dealing with small images, leading to an out-of-bounds read of the heap-allocated arrays Ux and Uy. Se detectó una lectura fuera de límites en OpenCV versiones anteriores a 4.1.1. Específicamente, una variable coarsest_scale es asumida para ser mayor o igual que finest_scale dentro de las funciones calc() y ocl_calc() en el archivo dis_flow.cpp. • https://access.redhat.com/security/cve/cve-2019-19624 https://github.com/opencv/opencv/commit/d1615ba11a93062b1429fce9f0f638d1572d3418 https://github.com/opencv/opencv/issues/14554 • CWE-125: Out-of-bounds Read •
CVSS: 5.9EPSS: 0%CPEs: 3EXPL: 1CVE-2019-15939
https://notcve.org/view.php?id=CVE-2019-15939
An issue was discovered in OpenCV 4.1.0. There is a divide-by-zero error in cv::HOGDescriptor::getDescriptorSize in modules/objdetect/src/hog.cpp. Se detectó un problema en OpenCV versión 4.1.0. Hay un error de división por cero en cv::HOGDescriptor::getDescriptorSize in modules/objdetect/src/hog.cpp. • http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00025.html https://github.com/OpenCV/opencv/issues/15287 https://github.com/opencv/opencv/pull/15382 https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html • CWE-369: Divide By Zero •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1CVE-2019-14493
https://notcve.org/view.php?id=CVE-2019-14493
An issue was discovered in OpenCV before 4.1.1. There is a NULL pointer dereference in the function cv::XMLParser::parse at modules/core/src/persistence.cpp. Se detectó un problema en OpenCV anterior a versión 4.1.1. Se presenta una desreferencia de puntero NULL en la función cv::XMLParser::parse en el archivo modules/core/src/persistence.cpp. • https://github.com/opencv/opencv/compare/371bba8...ddbd10c https://github.com/opencv/opencv/issues/15127 https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html • CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 1CVE-2019-14492
https://notcve.org/view.php?id=CVE-2019-14492
An issue was discovered in OpenCV before 3.4.7 and 4.x before 4.1.1. There is an out of bounds read/write in the function HaarEvaluator::OptFeature::calc in modules/objdetect/src/cascadedetect.hpp, which leads to denial of service. Se detectó un problema en OpenCV anterior a versión 3.4.7 y versiones 4.x anteriores a 4.1.1. Se presenta una lectura y escritura fuera de límites en la función HaarEvaluator::OptFeature::calc en el archivo modules/objdetect/src/cascadedetect.hpp, lo que conlleva a la denegación de servicio. • http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00025.html https://github.com/opencv/opencv/compare/33b765d...4a7ca5a https://github.com/opencv/opencv/compare/371bba8...ddbd10c https://github.com/opencv/opencv/issues/15124 • CWE-125: Out-of-bounds Read CWE-787: Out-of-bounds Write •
CVSS: 8.2EPSS: 0%CPEs: 2EXPL: 1CVE-2019-14491
https://notcve.org/view.php?id=CVE-2019-14491
An issue was discovered in OpenCV before 3.4.7 and 4.x before 4.1.1. There is an out of bounds read in the function cv::predictOrdered<cv::HaarEvaluator> in modules/objdetect/src/cascadedetect.hpp, which leads to denial of service. Se detectó un problema en OpenCV anterior a versión 3.4.7 y versiones 4.x anteriores a 4.1.1. Se presenta una lectura fuera de límites en la función cv::predictOrdered(cv::HaarEvaluator) en el archivo modules/objdetect/src/cascadedetect.hpp, lo que conlleva a la denegación de servicio. • http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00025.html https://github.com/opencv/opencv/compare/33b765d...4a7ca5a https://github.com/opencv/opencv/compare/371bba8...ddbd10c https://github.com/opencv/opencv/issues/15125 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HPFLN6QAX6SUA4XR4NMKKXX26H3TYCVQ • CWE-125: Out-of-bounds Read •