Search for packages
| purl | pkg:pypi/opencv-python@3.4.9.33 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-21n5-7ukh-gyfr
Aliases: CVE-2019-14493 GHSA-3448-vrgh-85xr |
NULL Pointer Dereference An issue was discovered in OpenCV There is a NULL pointer dereference in the function cv::XMLParser::parse at modules/core/src/persistence.cpp. |
Affected by 5 other vulnerabilities. |
|
VCID-25vm-cytf-bqb1
Aliases: CVE-2019-5063 GHSA-m6vm-8g8v-xfjh |
Out-of-bounds Write An exploitable heap buffer overflow vulnerability exists in the data structure persistence functionality of OpenCV A specially crafted XML file can cause a buffer overflow, resulting in multiple heap corruptions and potential code execution. An attacker can provide a specially crafted file to trigger this vulnerability. |
Affected by 5 other vulnerabilities. |
|
VCID-3zc6-3229-wfcc
Aliases: CVE-2019-15939 GHSA-hxfw-jm98-v4mq |
Divide By Zero An issue was discovered in OpenCV There is a divide-by-zero error in cv::HOGDescriptor::getDescriptorSize in modules/objdetect/src/hog.cpp. |
Affected by 5 other vulnerabilities. |
|
VCID-4sy2-mnu2-n3ew
Aliases: GHSA-qr4w-53vh-m672 |
opencv-python bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863 opencv-python versions before v4.8.1.78 bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863. opencv-python v4.8.1.78 upgrades the bundled libwebp binary to v1.3.2. |
Affected by 0 other vulnerabilities. |
|
VCID-73g1-r39e-z7ez
Aliases: PYSEC-2023-183 |
opencv-python versions before v4.8.1.78 bundled libwebp binaries in wheels that are vulnerable to CVE-2023-4863. opencv-python v4.8.1.78 upgrades the bundled libwebp binary to v1.3.2. |
Affected by 0 other vulnerabilities. |
|
VCID-fjy7-r2wm-n3b4
Aliases: CVE-2019-19624 GHSA-jggw-2q6g-c3m6 |
Out-of-bounds Read An out-of-bounds read was discovered in OpenCV Specifically, variable coarsest_scale is assumed to be greater than or equal to finest_scale within the calc()/ocl_calc() functions in dis_flow.cpp. However, this is not true when dealing with small images, leading to an out-of-bounds read of the heap-allocated arrays Ux and Uy. |
Affected by 10 other vulnerabilities. |
|
VCID-h7gk-61kp-8ygz
Aliases: CVE-2019-16249 GHSA-x3rm-644h-67m8 |
Out-of-bounds Read OpenCV has an out-of-bounds read in hal_baseline::v_load in core/hal/intrin_sse.hpp when called from computeSSDMeanNorm in modules/video/src/dis_flow.cpp. |
Affected by 3 other vulnerabilities. |
|
VCID-jypn-sttp-tkgm
Aliases: CVE-2019-5064 GHSA-q799-q27x-vp7w |
Out-of-bounds Write An exploitable heap buffer overflow vulnerability exists in the data structure persistence functionality of OpenCV, A specially crafted JSON file can cause a buffer overflow, resulting in multiple heap corruptions and potentially code execution. An attacker can provide a specially crafted file to trigger this vulnerability. |
Affected by 2 other vulnerabilities. |
|
VCID-kxqz-tbvz-gfcs
Aliases: CVE-2019-9423 GHSA-8849-5h85-98qw |
Out-of-bounds Write In opencv calls that use libpng, there is a possible out-of-bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges required. User interaction is not required for exploitation. Product: AndroidVersions: Android-10Android ID: A-110986616 |
Affected by 3 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||