Out-of-bounds read vulnerability in OpenCV's cv::RBaseStream::readBlock function

Out-of-bounds read vulnerability in OpenCV's cv::RBaseStream::readBlock function

CVE-2017-12598 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds read error in the cv::RBaseStream::readBlock function in modules/imgcodecs/src/bitstrm.cpp when reading an image file by using cv::imread, as demonstrated by the 8-opencv-invalid-read-fread test case.

Learn more about our Open Source Audit.