Out-of-bounds Read Affecting opencv-python Open this link in a new tab package, versions [,220.127.116.11)
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.Test your applications
13 Oct 2021
12 Oct 2021
How to fix?
opencv-python to version 18.104.22.168 or higher.
opencv-python is a Wrapper package for OpenCV python bindings.
Affected versions of this package are vulnerable to Out-of-bounds Read via the
cv::RBaseStream::readBlock function in
modules/imgcodecs/src/bitstrm.cpp when reading an image file by using
cv::imread, as demonstrated by the
8-opencv-invalid-read-fread test case.