Search for packages
| purl | pkg:pypi/opencv-contrib-python-headless@4.1.2.30 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-h4q9-6f9w-c3ag
Aliases: GHSA-w2pj-9cgh-mq2c |
opencv-contrib-python-headless bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863 opencv-contrib-python-headless versions before v4.8.1.78 bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863. opencv-contrib-python-headless v4.8.1.78 upgrades the bundled libwebp binary to v1.3.2. |
Affected by 0 other vulnerabilities. |
|
VCID-jypn-sttp-tkgm
Aliases: CVE-2019-5064 GHSA-q799-q27x-vp7w |
Out-of-bounds Write An exploitable heap buffer overflow vulnerability exists in the data structure persistence functionality of OpenCV, A specially crafted JSON file can cause a buffer overflow, resulting in multiple heap corruptions and potentially code execution. An attacker can provide a specially crafted file to trigger this vulnerability. |
Affected by 2 other vulnerabilities. |
|
VCID-qn1c-mtud-5kbq
Aliases: PYSEC-2023-182 |
opencv-contrib-python-headless versions before v4.8.1.78 bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863. opencv-contrib-python-headless v4.8.1.78 upgrades the bundled libwebp binary to v1.3.2. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-h7gk-61kp-8ygz | Out-of-bounds Read OpenCV has an out-of-bounds read in hal_baseline::v_load in core/hal/intrin_sse.hpp when called from computeSSDMeanNorm in modules/video/src/dis_flow.cpp. |
CVE-2019-16249
GHSA-x3rm-644h-67m8 |
| VCID-kxqz-tbvz-gfcs | Out-of-bounds Write In opencv calls that use libpng, there is a possible out-of-bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges required. User interaction is not required for exploitation. Product: AndroidVersions: Android-10Android ID: A-110986616 |
CVE-2019-9423
GHSA-8849-5h85-98qw |