Source: opencv Version: 2.4.9.1+dfsg1-2 Severity: important Tags: security upstream Forwarded: https://github.com/opencv/opencv/issues/9311
Hi, the following vulnerabilities were published for opencv. CVE-2017-12600[0]: | OpenCV (Open Source Computer Vision Library) through 3.3 has a denial | of service (CPU consumption) issue, as demonstrated by the | 11-opencv-dos-cpu-exhaust test case. CVE-2017-12602[1]: | OpenCV (Open Source Computer Vision Library) through 3.3 has a denial | of service (memory consumption) issue, as demonstrated by the | 10-opencv-dos-memory-exhaust test case. If you fix the vulnerabilities please also make sure to include the CVE (Common Vulnerabilities & Exposures) ids in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2017-12600 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12600 [1] https://security-tracker.debian.org/tracker/CVE-2017-12602 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12602 [2] https://github.com/opencv/opencv/issues/9311 Please adjust the affected versions in the BTS as needed. Regards, Salvatore -- debian-science-maintainers mailing list debian-science-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/debian-science-maintainers