CVE-2017-12598
https://notcve.org/view.php?id=CVE-2017-12598
OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds read error in the cv::RBaseStream::readBlock function in modules/imgcodecs/src/bitstrm.cpp when reading an image file by using cv::imread, as demonstrated by the 8-opencv-invalid-read-fread test case. La versión 3.3 de OpenCV (Open Source Computer Vision Library) tiene un error de lectura fuera de límites en la función cv::RBaseStream::readBlock modules/imgcodecs/src/bitstrm.cpp cuando lee un archivo de imagen utilizando cv::imread. Esto se ha demostrado con la prueba8-opencv-invalid-read-fread. • https://github.com/opencv/opencv/issues/9309 https://github.com/xiaoqx/pocs/blob/master/opencv.md https://lists.debian.org/debian-lts-announce/2018/07/msg00030.html https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html https://security.gentoo.org/glsa/201712-02 • CWE-125: Out-of-bounds Read •
CVE-2017-12603
https://notcve.org/view.php?id=CVE-2017-12603
OpenCV (Open Source Computer Vision Library) through 3.3 has an invalid write in the cv::RLByteStream::getBytes function in modules/imgcodecs/src/bitstrm.cpp when reading an image file by using cv::imread, as demonstrated by the 2-opencv-heapoverflow-fseek test case. La versión 3.3 de OpenCV (Open Source Computer Vision Library) tiene una escritura no válida en la función cv::RLByteStream::getBytes en modules/imgcodecs/src/bitstrm.cpp. cuando lee un archivo de imagen utilizando cv::imread. Esto se ha demostrado con la prueba 2-opencv-heapoverflow-fseek. • https://github.com/opencv/opencv/issues/9309 https://github.com/xiaoqx/pocs/blob/master/opencv.md https://lists.debian.org/debian-lts-announce/2018/07/msg00030.html https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html https://security.gentoo.org/glsa/201712-02 • CWE-787: Out-of-bounds Write •
CVE-2017-12604
https://notcve.org/view.php?id=CVE-2017-12604
OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds write error in the FillUniColor function in utils.cpp when reading an image file by using cv::imread. La versión 3.3 de OpenCV (Open Source Computer Vision Library) provoca un error de escritura fuera de límites en la función FillUniColor en utils.cpp cuando lee una imagen utilizando cv::imread. • https://github.com/opencv/opencv/issues/9309 https://github.com/xiaoqx/pocs/blob/master/opencv.md https://lists.debian.org/debian-lts-announce/2018/07/msg00030.html https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html https://security.gentoo.org/glsa/201712-02 • CWE-787: Out-of-bounds Write •
CVE-2017-12605
https://notcve.org/view.php?id=CVE-2017-12605
OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds write error in the FillColorRow8 function in utils.cpp when reading an image file by using cv::imread. La versión 3.3 de OpenCV (Open Source Computer Vision Library) provoca un error de escritura fuera de límites en la función FillColorRow8 en utils.cpp cuando lee un archivo de imagen utilizando cv::imread. • https://github.com/opencv/opencv/issues/9309 https://github.com/xiaoqx/pocs/blob/master/opencv.md https://lists.debian.org/debian-lts-announce/2018/07/msg00030.html https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html https://security.gentoo.org/glsa/201712-02 • CWE-787: Out-of-bounds Write •
CVE-2016-1517
https://notcve.org/view.php?id=CVE-2016-1517
OpenCV 3.0.0 allows remote attackers to cause a denial of service (segfault) via vectors involving corrupt chunks. OpenCV 3.0.0 permite a atacantes remotos provocar una denegación de servicio (segfault) a través de vectores que implican trozos corruptos. • https://arxiv.org/pdf/1701.04739.pdf https://github.com/opencv/opencv/issues/5956 • CWE-20: Improper Input Validation •