We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
System information (version)
Detailed description
An invalid writing occurs in the FillUniColor and FillUniGray functions in opencv/modules/imgcodecs/src/utils.cpp
POC https://github.com/blendin/pocs/blob/master/opencv/0.OOB_Write_FillUniColor
Steps to reproduce
#include <opencv2/opencv.hpp> int main(void) { cv::imread("0.OOB_Write_FillUniColor") }
Crash Details
ASAN:DEADLYSIGNAL ================================================================= ==23351==ERROR: AddressSanitizer: SEGV on unknown address 0x7f9f027530fd (pc 0x7f9f01405bd0 bp 0x000000006060 sp 0x7fff2f321208 T0) ==23351==The signal is caused by a WRITE memory access. #0 0x7f9f01405bcf in FillUniColor(unsigned char*, unsigned char*&, int, int, int&, int, int, PaletteEntry) (/usr/local/lib/libopencv_imgcodecs.so.3.3+0x73bcf) #1 0x7f9f01414895 in cv::BmpDecoder::readData(cv::Mat&) (/usr/local/lib/libopencv_imgcodecs.so.3.3+0x82895) #2 0x7f9f013fc642 in cv::imread_(cv::String const&, int, int, cv::Mat*) (/usr/local/lib/libopencv_imgcodecs.so.3.3+0x6a642) #3 0x7f9f013fbe6b in cv::imread(cv::String const&, int) (/usr/local/lib/libopencv_imgcodecs.so.3.3+0x69e6b) #4 0x4f118b in main /lz/targets/opencv.cc:7:15 #5 0x7f9f0011682f in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x2082f) #6 0x41a6e8 in _start (/lz/targets/verify+0x41a6e8) AddressSanitizer can not provide additional info. SUMMARY: AddressSanitizer: SEGV (/usr/local/lib/libopencv_imgcodecs.so.3.3+0x73bcf) in FillUniColor(unsigned char*, unsigned char*&, int, int, int&, int, int, PaletteEntry) ==23351==ABORTING
The text was updated successfully, but these errors were encountered:
This issue was assigned CVE-2017-1000450
Sorry, something went wrong.
Successfully merging a pull request may close this issue.
System information (version)
Detailed description
An invalid writing occurs in the FillUniColor and FillUniGray functions in opencv/modules/imgcodecs/src/utils.cpp
POC
https://github.com/blendin/pocs/blob/master/opencv/0.OOB_Write_FillUniColor
Steps to reproduce
Crash Details
The text was updated successfully, but these errors were encountered: