CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2017-12864
https://notcve.org/view.php?id=CVE-2017-12864
In opencv/modules/imgcodecs/src/grfmt_pxm.cpp, function ReadNumber did not checkout the input length, which lead to integer overflow. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier. En opencv/modules/imgcodecs/src/grfmt_pxm.cpp, la función ReadNumber no comprueba el tamaño de la entrada, lo que conduce a un desbordamiento de enteros. Si la imagen proviene de una fuente remota, podría provocar la ejecución remota de código o una denegación de servicio. • https://github.com/opencv/opencv/issues/9372 https://lists.debian.org/debian-lts-announce/2018/07/msg00030.html https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html https://security.gentoo.org/glsa/201712-02 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2017-12597
https://notcve.org/view.php?id=CVE-2017-12597
OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds write error in the function FillColorRow1 in utils.cpp when reading an image file by using cv::imread. La versión 3.3 de OpenCV (Open Source Computer Vision Library) provoca un error de escritura fuera de límites en la función FillColorRow1 en utils.cpp cuando lee una imagen utilizando cv::imread. • https://github.com/opencv/opencv/issues/9309 https://github.com/xiaoqx/pocs/blob/master/opencv.md https://lists.debian.org/debian-lts-announce/2018/07/msg00030.html https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html https://security.gentoo.org/glsa/201712-02 • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2017-12598
https://notcve.org/view.php?id=CVE-2017-12598
OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds read error in the cv::RBaseStream::readBlock function in modules/imgcodecs/src/bitstrm.cpp when reading an image file by using cv::imread, as demonstrated by the 8-opencv-invalid-read-fread test case. La versión 3.3 de OpenCV (Open Source Computer Vision Library) tiene un error de lectura fuera de límites en la función cv::RBaseStream::readBlock modules/imgcodecs/src/bitstrm.cpp cuando lee un archivo de imagen utilizando cv::imread. Esto se ha demostrado con la prueba8-opencv-invalid-read-fread. • https://github.com/opencv/opencv/issues/9309 https://github.com/xiaoqx/pocs/blob/master/opencv.md https://lists.debian.org/debian-lts-announce/2018/07/msg00030.html https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html https://security.gentoo.org/glsa/201712-02 • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2017-12599
https://notcve.org/view.php?id=CVE-2017-12599
OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds read error in the function icvCvt_BGRA2BGR_8u_C4C3R when reading an image file by using cv::imread. La versión 3.3 de OpenCV (Open Source Computer Vision Library) provoca un error de lectura fuera de límites en la función icvCvt_BGRA2BGR_8u_C4C3R cuando lee una imagen utilizando cv::imread. • https://github.com/opencv/opencv/issues/9309 https://github.com/xiaoqx/pocs/blob/master/opencv.md https://lists.debian.org/debian-lts-announce/2018/07/msg00030.html https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html https://security.gentoo.org/glsa/201712-02 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12600
https://notcve.org/view.php?id=CVE-2017-12600
OpenCV (Open Source Computer Vision Library) through 3.3 has a denial of service (CPU consumption) issue, as demonstrated by the 11-opencv-dos-cpu-exhaust test case. La versión 3.3 de OpenCV (Open Source Computer Vision Library) tiene un problema de denegación de servicio (consumo de CPU), como se ha demostrado con la prueba 11-opencv-dos-cpu-exhaust. • https://github.com/opencv/opencv/issues/9311 https://github.com/xiaoqx/pocs/blob/master/opencv.md https://security.gentoo.org/glsa/201712-02 •