CVE-2017-12605
https://notcve.org/view.php?id=CVE-2017-12605
OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds write error in the FillColorRow8 function in utils.cpp when reading an image file by using cv::imread. La versión 3.3 de OpenCV (Open Source Computer Vision Library) provoca un error de escritura fuera de límites en la función FillColorRow8 en utils.cpp cuando lee un archivo de imagen utilizando cv::imread. • https://github.com/opencv/opencv/issues/9309 https://github.com/xiaoqx/pocs/blob/master/opencv.md https://lists.debian.org/debian-lts-announce/2018/07/msg00030.html https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html https://security.gentoo.org/glsa/201712-02 • CWE-787: Out-of-bounds Write •
CVE-2016-1517
https://notcve.org/view.php?id=CVE-2016-1517
OpenCV 3.0.0 allows remote attackers to cause a denial of service (segfault) via vectors involving corrupt chunks. OpenCV 3.0.0 permite a atacantes remotos provocar una denegación de servicio (segfault) a través de vectores que implican trozos corruptos. • https://arxiv.org/pdf/1701.04739.pdf https://github.com/opencv/opencv/issues/5956 • CWE-20: Improper Input Validation •
CVE-2016-1516
https://notcve.org/view.php?id=CVE-2016-1516
OpenCV 3.0.0 has a double free issue that allows attackers to execute arbitrary code. OpenCV 3.0.0 tiene un problema de liberación doble que permite a atacantes ejecutar código arbitrario. • https://arxiv.org/pdf/1701.04739.pdf https://github.com/opencv/opencv/issues/5956 https://lists.debian.org/debian-lts-announce/2018/07/msg00030.html https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html • CWE-415: Double Free •