Published: 04 September 2017
OpenCV (Open Source Computer Vision Library) 3.3 has an out-of-bounds write error in the function FillColorRow1 in utils.cpp when reading an image file by using cv::imread. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-12597.
From the Ubuntu security team
It was discovered that OpenCV incorrectly handled certain image files. An attacker could possibly use this issue to cause a denial of service, execute arbitrary code or other unspecified impact.
CVSS 3 base score: 6.5