Astra Linux - уязвимость в opencv

In OpenCV 3.3.1, a heap-based buffer over-read exists in the function cv::HdrDecoder::checkSignature in modules/imgcodecs/src/grfmthdr.cpp...

EUVD-2021-2178

Malware in sbrugna...

CVE-2024-48858

CVE-2024-48858 affects QNX SDP (Blackberry) PCX image codec in SDP versions 8.0, 7.1, and 7.0. The root cause is improper input validation in the PCX image codec, which could allow an unauthenticated attacker to trigger a denial-of-service condition in the context of the process using the image c...

CVE-2024-48857 Vulnerabilities in TIFF and PCX Image Codecs Impact QNX Software Development Platform

NULL pointer dereference in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause a denial-of-service condition in the context of the process using the image codec...

CVE-2024-48857

The CVE-2024-48857 entry describes a NULL pointer dereference in the PCX image codec of QNX SDP (Blackberry) affecting versions 8.0, 7.1 and 7.0. The underlying issue is triggered during image codec handling, allowing an unauthenticated attacker to cause a denial-of-service condition in the conte...

CVE-2024-48856 Vulnerabilities in TIFF and PCX Image Codecs Impact QNX Software Development Platform

Out-of-bounds write in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause a denial-of-service condition or execute code in the context of the process using the image codec...

CVE-2024-48855

CVE-2024-48855 affects BlackBerry/QNX SDP: an out-of-bounds read in the TIFF image codec impacts SDP versions 8.0, 7.1 and 7.0, enabling an unauthenticated attacker to cause information disclosure within the process using the image codec. Reported impact aligns with information disclosure (confid...

Synapse can be forced to thumbnail unexpected file formats, invoking external, potentially untrustworthy decoders

Impact In Synapse versions before 1.120.1, enabling the dynamicthumbnails option or processing a specially crafted request could trigger the decoding and thumbnail generation of uncommon image formats, potentially invoking external tools like Ghostscript for processing. This significantly expands...

OpenCV Denial of Service Vulnerability (CNVD-2018-04995)

OpenCV is an open source, cross-platform, lightweight computer vision library. A security vulnerability exists in the 'validateInputImageSize' function in the modules/imgcodecs/src/loadsave.cpp file in OpenCV version 3.4.1. A remote attacker can exploit this vulnerability to cause a denial of...

OpenCV Denial of Service Vulnerability (CNVD-2018-04997)

OpenCV is an open source, cross-platform, lightweight computer vision library. A security vulnerability exists in the 'validateInputImageSize' function in the modules/imgcodecs/src/loadsave.cpp file in OpenCV version 3.4.1. A remote attacker can exploit this vulnerability to cause a denial of...

DEBIAN-CVE-2018-5269

In OpenCV 3.3.1, an assertion failure happens in cv::RBaseStream::setPos in modules/imgcodecs/src/bitstrm.cpp because of an incorrect integer cast...

UBUNTU-CVE-2018-5269

In OpenCV 3.3.1, an assertion failure happens in cv::RBaseStream::setPos in modules/imgcodecs/src/bitstrm.cpp because of an incorrect integer cast...

OpenCV 'cv::RBaseStream::setPos' function assertion failure vulnerability

OpenCV is an open source, cross-platform, lightweight computer vision library. A security vulnerability exists in the 'cv::RBaseStream::setPos' function in the modules/imgcodecs/src/bitstrm.cpp file in OpenCV version 3.3.1. An attacker can exploit this vulnerability to cause a denial of service...

CVE-2017-1000450

In opencv/modules/imgcodecs/src/utils.cpp, functions FillUniColor and FillUniGray do not check the input length, which can lead to integer overflow. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier...

DEBIAN-CVE-2017-1000450

In opencv/modules/imgcodecs/src/utils.cpp, functions FillUniColor and FillUniGray do not check the input length, which can lead to integer overflow. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier...

DEBIAN-CVE-2017-12863

In opencv/modules/imgcodecs/src/grfmtpxm.cpp, function PxMDecoder::readData has an integer overflow when calculate srcpitch. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier...

DEBIAN-CVE-2017-12864

In opencv/modules/imgcodecs/src/grfmtpxm.cpp, function ReadNumber did not checkout the input length, which lead to integer overflow. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier...

OpenCV Buffer Overflow Vulnerability

OpenCV is an open source, cross-platform, lightweight computer vision library. A buffer overflow vulnerability exists in the 'cv::RLByteStream::getBytes' function in the modules/imgcodecs/src/bitstrm.cpp file in OpenCV 3.3 and earlier versions. An attacker can exploit this vulnerability to cause ...