Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
- OpenCV 3.3.1 - Operating System / Platform => Ubuntu 16.04 - Compiler => clang++ - Compiled-executable: 32bits
An assertion failure is triggered when parsing crafted image file in function cv::RBaseStream::setPos in file bitstrm.cpp:168. This Assertion failure happens because an incorrect cast from a 64-bit integer to 32-bit integer.
The crash details as follows:
=================================================================
opencv_afl-test: /home/opencv/fuzz/target/opencv-3.3.1/modules/imgcodecs/src/bitstrm.cpp:168: void cv::RBaseStream::setPos(int): Assertion `isOpened() && pos >= 0' failed. Aborted (core dumped)
Please refer to the following url for the testcases: https://github.com/Epeius/NBPOC/tree/master/setPos_assertion_fail
The text was updated successfully, but these errors were encountered:
This issue was assigned CVE-2018-5269
Sorry, something went wrong.
Successfully merging a pull request may close this issue.
System information (version)
Detailed description
An assertion failure is triggered when parsing crafted image file in function cv::RBaseStream::setPos in file bitstrm.cpp:168. This Assertion failure happens because an incorrect cast from a 64-bit integer to 32-bit integer.
The crash details as follows:
=================================================================
opencv_afl-test: /home/opencv/fuzz/target/opencv-3.3.1/modules/imgcodecs/src/bitstrm.cpp:168: void cv::RBaseStream::setPos(int): Assertion `isOpened() && pos >= 0' failed.
Aborted (core dumped)
=================================================================
Steps to reproduce
Please refer to the following url for the testcases:
https://github.com/Epeius/NBPOC/tree/master/setPos_assertion_fail
The text was updated successfully, but these errors were encountered: