7 matches found
Linux Distros Unpatched Vulnerability : CVE-2019-19624
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds read was discovered in OpenCV before 4.1.1. Specifically, variable coarsestscale is assumed to be greater than or equal to finestscale within t...
Ubuntu 18.04 LTS / 22.04 LTS : OpenCV vulnerabilities (USN-7247-1)
The remote Ubuntu 18.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7247-1 advisory. It was discovered that OpenCV did not properly manage certain XML data, leading to a NULL pointer dereference. If a user were tricked into...
RHEL 8 : opencv (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - opencv: out-of-bounds read in function cv::predictOrdered in modules/objdetect/src/cascadedetect.hpp lead...
SUSE CVE-2019-19624
An out-of-bounds read was discovered in OpenCV before 4.1.1. Specifically, variable coarsestscale is assumed to be greater than or equal to finestscale within the calc/oclcalc functions in disflow.cpp. However, this is not true when dealing with small images, leading to an out-of-bounds read of t...
a-cv-imwrite-imread-plus (=0.12.0), aana (>=0.2.1 <=0.2.4) +3127 more potentially affected by CVE-2019-19624 via opencv-python-headless (>=3.4.3.18 <=4.13.0.92)
opencv-python-headless PYPI version =3.4.3.18, =0.2.1, =1.0.0, =0.17.3, =0.0.1.44, =0.0.1, =0.0.1, =0.2.1, =0.2.0, =0.3.0, =0.1.0, =0.1.2 and more Source cves: CVE-2019-19624 Source advisory: OSV:GHSA-JGGW-2Q6G-C3M6...
01os (>=0.0.3 <=0.0.14), 102218077-topsis (=0.0.1) +10176 more potentially affected by CVE-2019-19624 via opencv-python (>=3.4.10.35 <=4.13.0.92)
opencv-python PYPI version =3.4.10.35, =0.0.3, =0.0.1, =0.1.0, =0.0.2, =0.1.0, =0.10.0, =0.10.0, =0.11.0 - a-cv2-easy-resize =0.10.0 and more Source cves: CVE-2019-19624 Source advisory: OSV:GHSA-JGGW-2Q6G-C3M6...
CVE-2019-19624
OpenCV contains an out-of-bounds read in OpenCV versions before 4.1.1. The vulnerability stems from the calc()/ocl_calc() paths in dis_flow.cpp where coarsest_scale is assumed to be >= finest_scale; this assumption fails for small images, causing reads past heap-allocated arrays Ux and Uy. Sev...