Wind River Support Network

HomeDefectsLIN9-6182
Fixed

LIN9-6182 : Security Advisory - opencv - CVE-2017-1000450

Created: Jan 15, 2018    Updated: Dec 24, 2018
Resolved Date: Jan 28, 2018
Found In Version: 9.0.0.13
Fix Version: 9.0.0.14
Severity: Standard
Applicable for: Wind River Linux 9
Component/s: Userspace

Description

In opencv/modules/imgcodecs/src/utils.cpp, functions FillUniColor and FillUniGray do not check the input length, which can lead to integer overflow. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier.

https://nvd.nist.gov/vuln/detail/CVE-2017-1000450

Other Downloads


CVEs


Live chat
Online