Vulnerability CVE-2017-1000450

Vulnerability Name:

CVE-2017-1000450 (CCN-136982)

Assigned:

2017-09-27

Published:

2017-09-27

Updated:

2021-11-30

Summary:

In opencv/modules/imgcodecs/src/utils.cpp, functions FillUniColor and FillUniGray do not check the input length, which can lead to integer overflow. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier.

CVSS v3 Severity:

8.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
7.7 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
6.4 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-190

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2017-1000450

Source: XF
Type: UNKNOWN
opencv-cve20171000450-integer-overflow(136982)

Source: MISC
Type: Exploit, Third Party Advisory
https://github.com/blendin/pocs/blob/master/opencv/0.OOB_Write_FillUniColor

Source: CCN
Type: opencv GIT Repository
Out of bounds write causes Segmentation Fault #9723

Source: MISC
Type: Exploit, Issue Tracking, Third Party Advisory
https://github.com/opencv/opencv/issues/9723

Source: MLIST
Type: Mailing List, Third Party Advisory
[debian-lts-announce] 20180108 [SECURITY] [DLA 1235-1] opencv security update

Source: MLIST
Type: Mailing List, Third Party Advisory
[debian-lts-announce] 20180722 [SECURITY] [DLA 1438-1] opencv security update

Source: MLIST
Type: Mailing List, Third Party Advisory
[debian-lts-announce] 20211030 [SECURITY] [DLA 2799-1] opencv security update

Vulnerable Configuration:

Configuration 1:

cpe:/a:opencv:opencv:*:*:*:*:*:*:*:* (Version <= 3.3.0)

Configuration 2:

cpe:/o:debian:debian_linux:7.0:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:8.0:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20171000450	V	CVE-2017-1000450	2019-09-27
oval:com.ubuntu.artful:def:20171000450000	V	CVE-2017-1000450 on Ubuntu 17.10 (artful) - medium.	2018-01-02
oval:com.ubuntu.bionic:def:20171000450000	V	CVE-2017-1000450 on Ubuntu 18.04 LTS (bionic) - medium.	2018-01-02
oval:com.ubuntu.bionic:def:201710004500000000	V	CVE-2017-1000450 on Ubuntu 18.04 LTS (bionic) - medium.	2018-01-02
oval:com.ubuntu.trusty:def:20171000450000	V	CVE-2017-1000450 on Ubuntu 14.04 LTS (trusty) - medium.	2018-01-02
oval:com.ubuntu.xenial:def:201710004500000000	V	CVE-2017-1000450 on Ubuntu 16.04 LTS (xenial) - medium.	2018-01-02
oval:com.ubuntu.xenial:def:20171000450000	V	CVE-2017-1000450 on Ubuntu 16.04 LTS (xenial) - medium.	2018-01-02

BACK