Test Kennung:	1.3.6.1.4.1.25623.1.0.891354
Kategorie:	Debian Local Security Checks
Titel:	Debian LTS: Security Advisory for opencv (DLA-1354-1)
Zusammenfassung:	Two vulnerabilities were found in OpenCV, the 'Open Computer Vision;Library'.;;CVE-2018-5268;;In OpenCV 3.3.1, a heap-based buffer overflow happens in;cv::Jpeg2KDecoder::readComponent8u in;modules/imgcodecs/src/grfmt_jpeg2000.cpp when parsing a crafted;image file.;;CVE-2018-5269;;In OpenCV 3.3.1, an assertion failure happens in;cv::RBaseStream::setPos in modules/imgcodecs/src/bitstrm.cpp;because of an incorrect integer cast.
Beschreibung:	Summary: Two vulnerabilities were found in OpenCV, the 'Open Computer Vision Library'. CVE-2018-5268 In OpenCV 3.3.1, a heap-based buffer overflow happens in cv::Jpeg2KDecoder::readComponent8u in modules/imgcodecs/src/grfmt_jpeg2000.cpp when parsing a crafted image file. CVE-2018-5269 In OpenCV 3.3.1, an assertion failure happens in cv::RBaseStream::setPos in modules/imgcodecs/src/bitstrm.cpp because of an incorrect integer cast. Affected Software/OS: opencv on Debian Linux Solution: For Debian 7 'Wheezy', these problems have been fixed in version 2.3.1-11+deb7u4. We recommend that you upgrade your opencv packages. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2018-5268 BugTraq ID: 106945 http://www.securityfocus.com/bid/106945 https://github.com/opencv/opencv/issues/10541 https://lists.debian.org/debian-lts-announce/2018/04/msg00019.html https://lists.debian.org/debian-lts-announce/2018/07/msg00030.html Common Vulnerability Exposure (CVE) ID: CVE-2018-5269 https://github.com/opencv/opencv/issues/10540
Copyright	Copyright (C) 2018 Greenbone Networks GmbH http://greenbone.net

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.