Medium severity6.5NVD Advisory· Published Sep 4, 2017· Updated Jun 17, 2026
CVE-2017-14136
CVE-2017-14136
Description
OpenCV (Open Source Computer Vision Library) 3.3 has an out-of-bounds write error in the function FillColorRow1 in utils.cpp when reading an image file by using cv::imread. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-12597.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
opencv-pythonPyPI | < 3.3.1.11 | 3.3.1.11 |
opencv-contrib-pythonPyPI | < 3.3.1.11 | 3.3.1.11 |
Affected products
4- ghsa-coords2 versions
< 3.3.1.11+ 1 more
- (no CPE)range: < 3.3.1.11
- (no CPE)range: < 3.3.1.11
Patches
Vulnerability mechanics
References
7- github.com/opencv/opencv/pull/9448nvdIssue TrackingPatchThird Party AdvisoryWEB
- github.com/opencv/opencv/issues/9443nvdExploitIssue TrackingPatchThird Party AdvisoryWEB
- github.com/xiaoqx/pocs/blob/master/opencv.mdnvdExploitThird Party AdvisoryWEB
- github.com/advisories/GHSA-634c-v2xv-ffpgghsaADVISORY
- lists.debian.org/debian-lts-announce/2018/07/msg00030.htmlnvdMailing ListThird Party AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2017-14136ghsaADVISORY
- security.gentoo.org/glsa/201712-02nvdThird Party AdvisoryWEB
News mentions
0No linked articles in our index yet.