#VU30559 Out-of-bounds read in OpenCV - CVE-2019-19624

Cybersecurity Help s.r.o.

Published: 2019-12-06 | Updated: 2020-07-17

Vulnerability identifier: #VU30559

Vulnerability risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2019-19624

CWE-ID: CWE-125

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
OpenCV
Universal components / Libraries / Libraries used by multiple products

Vendor: Itseez

Description

The vulnerability allows a remote non-authenticated attacker to #BASIC_IMPACT#.

An out-of-bounds read was discovered in OpenCV before 4.1.1. Specifically, variable coarsest_scale is assumed to be greater than or equal to finest_scale within the calc()/ocl_calc() functions in dis_flow.cpp. However, this is not true when dealing with small images, leading to an out-of-bounds read of the heap-allocated arrays Ux and Uy.

Mitigation
Install update from vendor's website.

Vulnerable software versions

OpenCV: 4.1.0

External links
https://access.redhat.com/security/cve/cve-2019-19624
https://github.com/opencv/opencv/commit/d1615ba11a93062b1429fce9f0f638d1572d3418
https://github.com/opencv/opencv/issues/14554

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Ubuntu update for opencv

Multiple vulnerabilities in Itseez OpenCV