Out-of-bounds Write Affecting opencv-python Open this link in a new tab package, versions [,18.104.22.168)
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.Test your applications
13 Oct 2021
12 Oct 2021
How to fix?
opencv-python to version 22.214.171.124 or higher.
opencv-python is a Wrapper package for OpenCV python bindings.
Affected versions of this package are vulnerable to Out-of-bounds Write. It has an invalid write in the
cv::RLByteStream::getBytes function in
modules/imgcodecs/src/bitstrm.cpp when reading an image file by using
cv::imread, as demonstrated by the
2-opencv-heapoverflow-fseek test case.