High severity7.5NVD Advisory· Published Jan 1, 2018· Updated Jun 17, 2026
CVE-2017-18009
CVE-2017-18009
Description
In OpenCV 3.3.1, a heap-based buffer over-read exists in the function cv::HdrDecoder::checkSignature in modules/imgcodecs/src/grfmt_hdr.cpp.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
opencv-pythonPyPI | < 3.4.1.15 | 3.4.1.15 |
opencv-contrib-pythonPyPI | < 3.4.1.15 | 3.4.1.15 |
Affected products
2- ghsa-coords2 versions
< 3.4.1.15+ 1 more
- (no CPE)range: < 3.4.1.15
- (no CPE)range: < 3.4.1.15
Patches
Vulnerability mechanics
References
5- www.securityfocus.com/bid/106945nvdThird Party AdvisoryVDB EntryWEB
- github.com/advisories/GHSA-83rh-hx5x-q9p5ghsaADVISORY
- github.com/opencv/opencv/issues/10479nvdIssue TrackingThird Party AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2017-18009ghsaADVISORY
- github.com/opencv/opencv/pull/10480/commits/4ca89db22dea962690f31c1781bce5937ee91837ghsaWEB
News mentions
0No linked articles in our index yet.