Medium severity5.5NVD Advisory· Published Jan 8, 2018· Updated Jun 17, 2026
CVE-2018-5268
CVE-2018-5268
Description
In OpenCV 3.3.1, a heap-based buffer overflow happens in cv::Jpeg2KDecoder::readComponent8u in modules/imgcodecs/src/grfmt_jpeg2000.cpp when parsing a crafted image file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
opencv-pythonPyPI | < 3.4.1.15 | 3.4.1.15 |
opencv-contrib-pythonPyPI | < 3.4.1.15 | 3.4.1.15 |
Affected products
2- ghsa-coords2 versions
< 3.4.1.15+ 1 more
- (no CPE)range: < 3.4.1.15
- (no CPE)range: < 3.4.1.15
Patches
Vulnerability mechanics
References
8- github.com/opencv/opencv/issues/10541nvdExploitIssue TrackingMailing ListThird Party AdvisoryWEB
- www.securityfocus.com/bid/106945nvdThird Party AdvisoryVDB EntryWEB
- github.com/advisories/GHSA-9g8h-pjm4-q92pghsaADVISORY
- lists.debian.org/debian-lts-announce/2018/04/msg00019.htmlnvdMailing ListThird Party AdvisoryWEB
- lists.debian.org/debian-lts-announce/2018/07/msg00030.htmlnvdMailing ListThird Party AdvisoryWEB
- lists.debian.org/debian-lts-announce/2021/10/msg00028.htmlnvdMailing ListThird Party AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2018-5268ghsaADVISORY
- github.com/opencv/opencv/pull/10566/commits/435a3e337bd9d4e11af61cf8b8afca067bf1a8aaghsaWEB
News mentions
0No linked articles in our index yet.