Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS0yNjd4LXc1aHgtOGhqcs0WUA
Integer Overflow or Wraparound in OpenCV
In opencv/modules/imgcodecs/src/grfmt_pxm.cpp, function ReadNumber did not checkout the input length, which lead to integer overflow. If the image is from remote, may lead to remote code execution or denial of service. This affects OpenCV 3.3 (corresponding with OpenCV-Python version 3.3.0.9) and earlier.
Permalink: https://github.com/advisories/GHSA-267x-w5hx-8hjrJSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS0yNjd4LXc1aHgtOGhqcs0WUA
Source: GitHub Advisory Database
Origin: Unspecified
Severity: High
Classification: General
Published: over 3 years ago
Updated: almost 2 years ago
CVSS Score: 8.8
CVSS vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Percentage: 0.00799
EPSS Percentile: 0.81508
Identifiers: GHSA-267x-w5hx-8hjr, CVE-2017-12864
References:
- https://nvd.nist.gov/vuln/detail/CVE-2017-12864
- https://github.com/opencv/opencv/issues/9372
- https://github.com/opencv/opencv/pull/9376
- https://lists.debian.org/debian-lts-announce/2018/07/msg00030.html
- https://security.gentoo.org/glsa/201712-02
- https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html
- https://github.com/advisories/GHSA-267x-w5hx-8hjr
Blast Radius: 42.5
Affected Packages
pypi:opencv-contrib-python
Dependent packages: 321Dependent repositories: 8,355
Downloads: 1,967,775 last month
Affected Version Ranges: <= 3.3.0.9
Fixed in: 3.3.1.11
All affected versions:
All unaffected versions:
pypi:opencv-python
Dependent packages: 3,545Dependent repositories: 67,670
Downloads: 13,293,443 last month
Affected Version Ranges: <= 3.3.0.9
Fixed in: 3.3.1.11
All affected versions:
All unaffected versions: 3.1.0