vulnerability
SUSE: CVE-2017-12863: SUSE Linux Security Advisory
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | Aug 15, 2017 | May 24, 2018 | May 24, 2018 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
Aug 15, 2017
Added
May 24, 2018
Modified
May 24, 2018
Description
In opencv/modules/imgcodecs/src/grfmt_pxm.cpp, function PxMDecoder::readData has an integer overflow when calculate src_pitch. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier.
Solution(s)
suse-upgrade-libopencv-qt56_3suse-upgrade-libopencv-qt56_3-debuginfosuse-upgrade-libopencv3_1suse-upgrade-libopencv3_1-debuginfosuse-upgrade-opencvsuse-upgrade-opencv-debuginfosuse-upgrade-opencv-debugsourcesuse-upgrade-opencv-develsuse-upgrade-opencv-docsuse-upgrade-opencv-qt5suse-upgrade-opencv-qt5-debuginfosuse-upgrade-opencv-qt5-debugsourcesuse-upgrade-opencv-qt5-develsuse-upgrade-opencv-qt5-docsuse-upgrade-python-opencvsuse-upgrade-python-opencv-debuginfosuse-upgrade-python-opencv-qt5suse-upgrade-python-opencv-qt5-debuginfosuse-upgrade-python3-opencvsuse-upgrade-python3-opencv-debuginfosuse-upgrade-python3-opencv-qt5suse-upgrade-python3-opencv-qt5-debuginfo
References

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.