High severityNVD Advisory· Published Sep 27, 2019· Updated Aug 4, 2024
CVE-2019-9423
CVE-2019-9423
Description
In opencv calls that use libpng, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges required. User interaction is not required for exploitation. Product: AndroidVersions: Android-10Android ID: A-110986616
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
opencv-pythonPyPI | <= 4.1.1.26 | — |
opencv-python-headlessPyPI | <= 4.1.1.26 | — |
opencv-contrib-pythonPyPI | <= 4.1.1.26 | — |
opencv-contrib-python-headlessPyPI | <= 4.1.1.26 | — |
Affected products
4- ghsa-coords4 versionspkg:pypi/opencv-contrib-pythonpkg:pypi/opencv-contrib-python-headlesspkg:pypi/opencv-pythonpkg:pypi/opencv-python-headless
<= 4.1.1.26+ 3 more
- (no CPE)range: <= 4.1.1.26
- (no CPE)range: <= 4.1.1.26
- (no CPE)range: <= 4.1.1.26
- (no CPE)range: <= 4.1.1.26
Patches
Vulnerability mechanics
References
7- github.com/advisories/GHSA-8849-5h85-98qwghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2019-9423ghsaADVISORY
- www.openwall.com/lists/oss-security/2019/10/25/17ghsamailing-listx_refsource_MLISTWEB
- www.openwall.com/lists/oss-security/2019/10/27/1ghsamailing-listx_refsource_MLISTWEB
- www.openwall.com/lists/oss-security/2019/11/07/1ghsamailing-listx_refsource_MLISTWEB
- www.openwall.com/lists/oss-security/2020/12/05/1ghsamailing-listx_refsource_MLISTWEB
- source.android.com/security/bulletin/android-10ghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.