Security update for opencv SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2018:1385-1 Final 1 1 2018-05-23T07:40:56Z current 2018-05-23T07:40:56Z 2018-05-23T07:40:56Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for opencv This update for opencv fixes the following issues: Security issues fixed: - CVE-2016-1516: OpenCV had a double free issue that allowed attackers to execute arbitrary code. (boo#1033152) - CVE-2017-14136: OpenCV had an out-of-bounds write error in the function FillColorRow1 in utils.cpp when reading an image file by using cv::imread. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-12597. (boo#1057146) - CVE-2017-12606: OpenCV had an out-of-bounds write error in the function FillColorRow4 in utils.cpp when reading an image file by using cv::imread. (boo#1052451) - CVE-2017-12604: OpenCV had an out-of-bounds write error in the FillUniColor function in utils.cpp when reading an image file by using cv::imread. (boo#1052454) - CVE-2017-12603: OpenCV had an invalid write in the cv::RLByteStream::getBytes function in modules/imgcodecs/src/bitstrm.cpp when reading an image file by using cv::imread, as demonstrated by the 2-opencv-heapoverflow-fseek test case. (boo#1052455) - CVE-2017-12602: OpenCV had a denial of service (memory consumption) issue, as demonstrated by the 10-opencv-dos-memory-exhaust test case. (boo#1052456) - CVE-2017-12601: OpenCV had a buffer overflow in the cv::BmpDecoder::readData function in modules/imgcodecs/src/grfmt_bmp.cpp when reading an image file by using cv::imread, as demonstrated by the 4-buf-overflow-readData-memcpy test case. (boo#1052457) - CVE-2017-12600: OpenCV had a denial of service (CPU consumption) issue, as demonstrated by the 11-opencv-dos-cpu-exhaust test case. (boo#1052459) - CVE-2017-12599: OpenCV had an out-of-bounds read error in the function icvCvt_BGRA2BGR_8u_C4C3R when reading an image file by using cv::imread. (boo#1052461) - CVE-2017-12598: OpenCV had an out-of-bounds read error in the cv::RBaseStream::readBlock function in modules/imgcodecs/src/bitstrm.cpp when reading an image file by using cv::imread, as demonstrated by the 8-opencv-invalid-read-fread test case. (boo#1052462) - CVE-2017-12597: OpenCV had an out-of-bounds write error in the function FillColorRow1 in utils.cpp when reading an image file by using cv::imread. (boo#1052465) - CVE-2017-12864: In opencv/modules/imgcodecs/src/grfmt_pxm.cpp, function ReadNumber did not checkout the input length, which lead to integer overflow. If the image is from remote, may lead to remote code execution or denial of service. (boo#1054019) - CVE-2017-12863: In opencv/modules/imgcodecs/src/grfmt_pxm.cpp, function PxMDecoder::readData has an integer overflow when calculate src_pitch. If the image is from remote, may lead to remote code execution or denial of service. (boo#1054020) - CVE-2017-12862: In modules/imgcodecs/src/grfmt_pxm.cpp, the length of buffer AutoBuffer _src is small than expected, which will cause copy buffer overflow later. If the image is from remote, may lead to remote code execution or denial of service. (boo#1054021) - CVE-2017-12605: OpenCV had an out-of-bounds write error in the FillColorRow8 function in utils.cpp when reading an image file by using cv::imread. (boo#1054984) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-security-announce/2018-05/msg00094.html E-Mail link for openSUSE-SU-2018:1385-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.3 libopencv-qt56_3-3.1.0-4.6.1 libopencv3_1-3.1.0-4.6.1 opencv-3.1.0-4.6.1 opencv-devel-3.1.0-4.6.1 opencv-doc-3.1.0-4.6.1 opencv-qt5-3.1.0-4.6.1 opencv-qt5-devel-3.1.0-4.6.1 opencv-qt5-doc-3.1.0-4.6.1 python-opencv-3.1.0-4.6.1 python-opencv-qt5-3.1.0-4.6.1 python3-opencv-3.1.0-4.6.1 python3-opencv-qt5-3.1.0-4.6.1 libopencv-qt56_3-3.1.0-4.6.1 as a component of openSUSE Leap 42.3 libopencv3_1-3.1.0-4.6.1 as a component of openSUSE Leap 42.3 opencv-3.1.0-4.6.1 as a component of openSUSE Leap 42.3 opencv-devel-3.1.0-4.6.1 as a component of openSUSE Leap 42.3 opencv-doc-3.1.0-4.6.1 as a component of openSUSE Leap 42.3 opencv-qt5-3.1.0-4.6.1 as a component of openSUSE Leap 42.3 opencv-qt5-devel-3.1.0-4.6.1 as a component of openSUSE Leap 42.3 opencv-qt5-doc-3.1.0-4.6.1 as a component of openSUSE Leap 42.3 python-opencv-3.1.0-4.6.1 as a component of openSUSE Leap 42.3 python-opencv-qt5-3.1.0-4.6.1 as a component of openSUSE Leap 42.3 python3-opencv-3.1.0-4.6.1 as a component of openSUSE Leap 42.3 python3-opencv-qt5-3.1.0-4.6.1 as a component of openSUSE Leap 42.3 OpenCV 3.0.0 has a double free issue that allows attackers to execute arbitrary code. CVE-2016-1516 openSUSE Leap 42.3:libopencv-qt56_3-3.1.0-4.6.1 openSUSE Leap 42.3:libopencv3_1-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-doc-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-doc-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-qt5-3.1.0-4.6.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2018-05/msg00094.html https://www.suse.com/security/cve/CVE-2016-1516.html CVE-2016-1516 https://bugzilla.suse.com/1033152 SUSE Bug 1033152 OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds write error in the function FillColorRow1 in utils.cpp when reading an image file by using cv::imread. CVE-2017-12597 openSUSE Leap 42.3:libopencv-qt56_3-3.1.0-4.6.1 openSUSE Leap 42.3:libopencv3_1-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-doc-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-doc-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-qt5-3.1.0-4.6.1 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2018-05/msg00094.html https://www.suse.com/security/cve/CVE-2017-12597.html CVE-2017-12597 https://bugzilla.suse.com/1052465 SUSE Bug 1052465 OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds read error in the cv::RBaseStream::readBlock function in modules/imgcodecs/src/bitstrm.cpp when reading an image file by using cv::imread, as demonstrated by the 8-opencv-invalid-read-fread test case. CVE-2017-12598 openSUSE Leap 42.3:libopencv-qt56_3-3.1.0-4.6.1 openSUSE Leap 42.3:libopencv3_1-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-doc-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-doc-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-qt5-3.1.0-4.6.1 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2018-05/msg00094.html https://www.suse.com/security/cve/CVE-2017-12598.html CVE-2017-12598 https://bugzilla.suse.com/1052462 SUSE Bug 1052462 OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds read error in the function icvCvt_BGRA2BGR_8u_C4C3R when reading an image file by using cv::imread. CVE-2017-12599 openSUSE Leap 42.3:libopencv-qt56_3-3.1.0-4.6.1 openSUSE Leap 42.3:libopencv3_1-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-doc-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-doc-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-qt5-3.1.0-4.6.1 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2018-05/msg00094.html https://www.suse.com/security/cve/CVE-2017-12599.html CVE-2017-12599 https://bugzilla.suse.com/1052461 SUSE Bug 1052461 OpenCV (Open Source Computer Vision Library) through 3.3 has a denial of service (CPU consumption) issue, as demonstrated by the 11-opencv-dos-cpu-exhaust test case. CVE-2017-12600 openSUSE Leap 42.3:libopencv-qt56_3-3.1.0-4.6.1 openSUSE Leap 42.3:libopencv3_1-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-doc-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-doc-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-qt5-3.1.0-4.6.1 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2018-05/msg00094.html https://www.suse.com/security/cve/CVE-2017-12600.html CVE-2017-12600 https://bugzilla.suse.com/1052459 SUSE Bug 1052459 OpenCV (Open Source Computer Vision Library) through 3.3 has a buffer overflow in the cv::BmpDecoder::readData function in modules/imgcodecs/src/grfmt_bmp.cpp when reading an image file by using cv::imread, as demonstrated by the 4-buf-overflow-readData-memcpy test case. CVE-2017-12601 openSUSE Leap 42.3:libopencv-qt56_3-3.1.0-4.6.1 openSUSE Leap 42.3:libopencv3_1-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-doc-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-doc-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-qt5-3.1.0-4.6.1 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2018-05/msg00094.html https://www.suse.com/security/cve/CVE-2017-12601.html CVE-2017-12601 https://bugzilla.suse.com/1052457 SUSE Bug 1052457 OpenCV (Open Source Computer Vision Library) through 3.3 has a denial of service (memory consumption) issue, as demonstrated by the 10-opencv-dos-memory-exhaust test case. CVE-2017-12602 openSUSE Leap 42.3:libopencv-qt56_3-3.1.0-4.6.1 openSUSE Leap 42.3:libopencv3_1-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-doc-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-doc-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-qt5-3.1.0-4.6.1 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2018-05/msg00094.html https://www.suse.com/security/cve/CVE-2017-12602.html CVE-2017-12602 https://bugzilla.suse.com/1052456 SUSE Bug 1052456 OpenCV (Open Source Computer Vision Library) through 3.3 has an invalid write in the cv::RLByteStream::getBytes function in modules/imgcodecs/src/bitstrm.cpp when reading an image file by using cv::imread, as demonstrated by the 2-opencv-heapoverflow-fseek test case. CVE-2017-12603 openSUSE Leap 42.3:libopencv-qt56_3-3.1.0-4.6.1 openSUSE Leap 42.3:libopencv3_1-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-doc-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-doc-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-qt5-3.1.0-4.6.1 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2018-05/msg00094.html https://www.suse.com/security/cve/CVE-2017-12603.html CVE-2017-12603 https://bugzilla.suse.com/1052455 SUSE Bug 1052455 OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds write error in the FillUniColor function in utils.cpp when reading an image file by using cv::imread. CVE-2017-12604 openSUSE Leap 42.3:libopencv-qt56_3-3.1.0-4.6.1 openSUSE Leap 42.3:libopencv3_1-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-doc-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-doc-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-qt5-3.1.0-4.6.1 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2018-05/msg00094.html https://www.suse.com/security/cve/CVE-2017-12604.html CVE-2017-12604 https://bugzilla.suse.com/1033152 SUSE Bug 1033152 https://bugzilla.suse.com/1052454 SUSE Bug 1052454 OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds write error in the FillColorRow8 function in utils.cpp when reading an image file by using cv::imread. CVE-2017-12605 openSUSE Leap 42.3:libopencv-qt56_3-3.1.0-4.6.1 openSUSE Leap 42.3:libopencv3_1-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-doc-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-doc-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-qt5-3.1.0-4.6.1 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2018-05/msg00094.html https://www.suse.com/security/cve/CVE-2017-12605.html CVE-2017-12605 https://bugzilla.suse.com/1054984 SUSE Bug 1054984 OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds write error in the function FillColorRow4 in utils.cpp when reading an image file by using cv::imread. CVE-2017-12606 openSUSE Leap 42.3:libopencv-qt56_3-3.1.0-4.6.1 openSUSE Leap 42.3:libopencv3_1-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-doc-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-doc-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-qt5-3.1.0-4.6.1 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2018-05/msg00094.html https://www.suse.com/security/cve/CVE-2017-12606.html CVE-2017-12606 https://bugzilla.suse.com/1033150 SUSE Bug 1033150 https://bugzilla.suse.com/1052451 SUSE Bug 1052451 In modules/imgcodecs/src/grfmt_pxm.cpp, the length of buffer AutoBuffer _src is small than expected, which will cause copy buffer overflow later. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier. CVE-2017-12862 openSUSE Leap 42.3:libopencv-qt56_3-3.1.0-4.6.1 openSUSE Leap 42.3:libopencv3_1-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-doc-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-doc-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-qt5-3.1.0-4.6.1 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2018-05/msg00094.html https://www.suse.com/security/cve/CVE-2017-12862.html CVE-2017-12862 https://bugzilla.suse.com/1054021 SUSE Bug 1054021 In opencv/modules/imgcodecs/src/grfmt_pxm.cpp, function PxMDecoder::readData has an integer overflow when calculate src_pitch. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier. CVE-2017-12863 openSUSE Leap 42.3:libopencv-qt56_3-3.1.0-4.6.1 openSUSE Leap 42.3:libopencv3_1-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-doc-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-doc-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-qt5-3.1.0-4.6.1 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2018-05/msg00094.html https://www.suse.com/security/cve/CVE-2017-12863.html CVE-2017-12863 https://bugzilla.suse.com/1054020 SUSE Bug 1054020 In opencv/modules/imgcodecs/src/grfmt_pxm.cpp, function ReadNumber did not checkout the input length, which lead to integer overflow. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier. CVE-2017-12864 openSUSE Leap 42.3:libopencv-qt56_3-3.1.0-4.6.1 openSUSE Leap 42.3:libopencv3_1-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-doc-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-doc-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-qt5-3.1.0-4.6.1 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2018-05/msg00094.html https://www.suse.com/security/cve/CVE-2017-12864.html CVE-2017-12864 https://bugzilla.suse.com/1054019 SUSE Bug 1054019 OpenCV (Open Source Computer Vision Library) 3.3 has an out-of-bounds write error in the function FillColorRow1 in utils.cpp when reading an image file by using cv::imread. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-12597. CVE-2017-14136 openSUSE Leap 42.3:libopencv-qt56_3-3.1.0-4.6.1 openSUSE Leap 42.3:libopencv3_1-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-doc-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-devel-3.1.0-4.6.1 openSUSE Leap 42.3:opencv-qt5-doc-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python-opencv-qt5-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-3.1.0-4.6.1 openSUSE Leap 42.3:python3-opencv-qt5-3.1.0-4.6.1 important Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2018-05/msg00094.html https://www.suse.com/security/cve/CVE-2017-14136.html CVE-2017-14136 https://bugzilla.suse.com/1057146 SUSE Bug 1057146