You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
OpenCV 2.x (or at least the Android SDK version) uses a vulnerable version of libpng. Any applications uploaded to Google Play are given a warning and directed to this page: https://support.google.com/faqs/answer/7011127
The vulnerability in question is https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8540, which stems from an out-of-bounds memory access that could potentially lead to code execution Versions 1.0.x before 1.0.66, 1.1.x and 1.2.x before 1.2.56, 1.3.x and 1.4.x before 1.4.19 and 1.5.x before 1.5.26 are affected.
Google is going to block apps using vulnerable versions of libpng after 17 Sep 2016.
The text was updated successfully, but these errors were encountered:
simonrob
changed the title
OpenCV uses vulnerable version of libpng
OpenCV 2.x uses vulnerable version of libpng
Jun 17, 2016
OpenCV 2.x (or at least the Android SDK version) uses a vulnerable version of libpng. Any applications uploaded to Google Play are given a warning and directed to this page: https://support.google.com/faqs/answer/7011127
The vulnerability in question is https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8540, which stems from an out-of-bounds memory access that could potentially lead to code execution Versions 1.0.x before 1.0.66, 1.1.x and 1.2.x before 1.2.56, 1.3.x and 1.4.x before 1.4.19 and 1.5.x before 1.5.26 are affected.
Google is going to block apps using vulnerable versions of libpng after 17 Sep 2016.
The text was updated successfully, but these errors were encountered: