CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2017-12601
https://notcve.org/view.php?id=CVE-2017-12601
OpenCV (Open Source Computer Vision Library) through 3.3 has a buffer overflow in the cv::BmpDecoder::readData function in modules/imgcodecs/src/grfmt_bmp.cpp when reading an image file by using cv::imread, as demonstrated by the 4-buf-overflow-readData-memcpy test case. La versión 3.3 de OpenCV (Open Source Computer Vision Library) tiene un desbordamiento de búfer en la función cv::BmpDecoder::readData en modules/imgcodecs/src/grfmt_bmp.cpp cuando lee un archivo de imagen utilizando cv::imread. Esto se ha demostrado con la prueba 4-buf-overflow-readData-memcpy. • https://github.com/opencv/opencv/issues/9309 https://github.com/xiaoqx/pocs/blob/master/opencv.md https://lists.debian.org/debian-lts-announce/2018/07/msg00030.html https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html https://security.gentoo.org/glsa/201712-02 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2017-12597
https://notcve.org/view.php?id=CVE-2017-12597
OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds write error in the function FillColorRow1 in utils.cpp when reading an image file by using cv::imread. La versión 3.3 de OpenCV (Open Source Computer Vision Library) provoca un error de escritura fuera de límites en la función FillColorRow1 en utils.cpp cuando lee una imagen utilizando cv::imread. • https://github.com/opencv/opencv/issues/9309 https://github.com/xiaoqx/pocs/blob/master/opencv.md https://lists.debian.org/debian-lts-announce/2018/07/msg00030.html https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html https://security.gentoo.org/glsa/201712-02 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12602
https://notcve.org/view.php?id=CVE-2017-12602
OpenCV (Open Source Computer Vision Library) through 3.3 has a denial of service (memory consumption) issue, as demonstrated by the 10-opencv-dos-memory-exhaust test case. La versión 3.3 de OpenCV (Open Source Computer Vision Library) tiene un problema de denegación de servicio (consumo de memoria), como se ha demostrado con la prueba 10-opencv-dos-memory-exhaust. • https://github.com/opencv/opencv/issues/9311 https://github.com/xiaoqx/pocs/blob/master/opencv.md https://security.gentoo.org/glsa/201712-02 •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2017-12598
https://notcve.org/view.php?id=CVE-2017-12598
OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds read error in the cv::RBaseStream::readBlock function in modules/imgcodecs/src/bitstrm.cpp when reading an image file by using cv::imread, as demonstrated by the 8-opencv-invalid-read-fread test case. La versión 3.3 de OpenCV (Open Source Computer Vision Library) tiene un error de lectura fuera de límites en la función cv::RBaseStream::readBlock modules/imgcodecs/src/bitstrm.cpp cuando lee un archivo de imagen utilizando cv::imread. Esto se ha demostrado con la prueba8-opencv-invalid-read-fread. • https://github.com/opencv/opencv/issues/9309 https://github.com/xiaoqx/pocs/blob/master/opencv.md https://lists.debian.org/debian-lts-announce/2018/07/msg00030.html https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html https://security.gentoo.org/glsa/201712-02 • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2017-12603
https://notcve.org/view.php?id=CVE-2017-12603
OpenCV (Open Source Computer Vision Library) through 3.3 has an invalid write in the cv::RLByteStream::getBytes function in modules/imgcodecs/src/bitstrm.cpp when reading an image file by using cv::imread, as demonstrated by the 2-opencv-heapoverflow-fseek test case. La versión 3.3 de OpenCV (Open Source Computer Vision Library) tiene una escritura no válida en la función cv::RLByteStream::getBytes en modules/imgcodecs/src/bitstrm.cpp. cuando lee un archivo de imagen utilizando cv::imread. Esto se ha demostrado con la prueba 2-opencv-heapoverflow-fseek. • https://github.com/opencv/opencv/issues/9309 https://github.com/xiaoqx/pocs/blob/master/opencv.md https://lists.debian.org/debian-lts-announce/2018/07/msg00030.html https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html https://security.gentoo.org/glsa/201712-02 • CWE-787: Out-of-bounds Write •