OpenCV Denial of Service and Heap Buffer Overflow Vulnerabilities
BID:106945
CVE-2017-18009 | CVE-2018-5268 | CVE-2018-5269 |Info
OpenCV Denial of Service and Heap Buffer Overflow Vulnerabilities
| Bugtraq ID: | 106945 |
| Class: | Design Error |
| CVE: |
CVE-2018-5268 CVE-2018-5269 CVE-2017-18009 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 04 2019 12:00AM |
| Updated: | Feb 04 2019 12:00AM |
| Credit: | Bin Zhang |
| Vulnerable: |
OpenCV OpenCV 3.3.1 Google Android 7.1.1 Google Android 9.0 Google Android 8.1 Google Android 8.0 Google Android 7.1.2 Google Android 7.0 |
| Not Vulnerable: | |
Discussion
OpenCV Denial of Service and Heap Buffer Overflow Vulnerabilities
OpenCV is prone to multiple denial-of-service vulnerabilities and a heap-based buffer-overflow vulnerability.
Successful exploits may allow attackers to crash the affected application, resulting in denial-of-service condition. Due to the nature of this issue, arbitrary code execution may be possible but this has not been confirmed.
OpenCV 3.3.1 is vulnerable; other versions may also be affected.
OpenCV is prone to multiple denial-of-service vulnerabilities and a heap-based buffer-overflow vulnerability.
Successful exploits may allow attackers to crash the affected application, resulting in denial-of-service condition. Due to the nature of this issue, arbitrary code execution may be possible but this has not been confirmed.
OpenCV 3.3.1 is vulnerable; other versions may also be affected.
Solution / Fix
OpenCV Denial of Service and Heap Buffer Overflow Vulnerabilities
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.