libopencv4_5-4.5.2-2.2 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:11115 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libopencv4_5-4.5.2-2.2 on GA media These are all security issues fixed in the libopencv4_5-4.5.2-2.2 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-11115 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:11115 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2019-14491/ SUSE CVE CVE-2019-14491 page https://www.suse.com/security/cve/CVE-2019-15939/ SUSE CVE CVE-2019-15939 page openSUSE Tumbleweed libopencv4_5-4.5.2-2.2 libopencv_aruco4_5-4.5.2-2.2 libopencv_face4_5-4.5.2-2.2 libopencv_highgui4_5-4.5.2-2.2 libopencv_imgcodecs4_5-4.5.2-2.2 libopencv_objdetect4_5-4.5.2-2.2 libopencv_superres4_5-4.5.2-2.2 libopencv_videoio4_5-4.5.2-2.2 libopencv_videostab4_5-4.5.2-2.2 libopencv_ximgproc4_5-4.5.2-2.2 opencv-4.5.2-2.2 opencv-devel-4.5.2-2.2 opencv-doc-4.5.2-2.2 opencv4-cascades-data-4.5.2-2.2 python3-opencv-4.5.2-2.2 libopencv4_5-4.5.2-2.2 as a component of openSUSE Tumbleweed libopencv_aruco4_5-4.5.2-2.2 as a component of openSUSE Tumbleweed libopencv_face4_5-4.5.2-2.2 as a component of openSUSE Tumbleweed libopencv_highgui4_5-4.5.2-2.2 as a component of openSUSE Tumbleweed libopencv_imgcodecs4_5-4.5.2-2.2 as a component of openSUSE Tumbleweed libopencv_objdetect4_5-4.5.2-2.2 as a component of openSUSE Tumbleweed libopencv_superres4_5-4.5.2-2.2 as a component of openSUSE Tumbleweed libopencv_videoio4_5-4.5.2-2.2 as a component of openSUSE Tumbleweed libopencv_videostab4_5-4.5.2-2.2 as a component of openSUSE Tumbleweed libopencv_ximgproc4_5-4.5.2-2.2 as a component of openSUSE Tumbleweed opencv-4.5.2-2.2 as a component of openSUSE Tumbleweed opencv-devel-4.5.2-2.2 as a component of openSUSE Tumbleweed opencv-doc-4.5.2-2.2 as a component of openSUSE Tumbleweed opencv4-cascades-data-4.5.2-2.2 as a component of openSUSE Tumbleweed python3-opencv-4.5.2-2.2 as a component of openSUSE Tumbleweed An issue was discovered in OpenCV before 3.4.7 and 4.x before 4.1.1. There is an out of bounds read in the function cv::predictOrdered<cv::HaarEvaluator> in modules/objdetect/src/cascadedetect.hpp, which leads to denial of service. CVE-2019-14491 openSUSE Tumbleweed:libopencv4_5-4.5.2-2.2 openSUSE Tumbleweed:libopencv_aruco4_5-4.5.2-2.2 openSUSE Tumbleweed:libopencv_face4_5-4.5.2-2.2 openSUSE Tumbleweed:libopencv_highgui4_5-4.5.2-2.2 openSUSE Tumbleweed:libopencv_imgcodecs4_5-4.5.2-2.2 openSUSE Tumbleweed:libopencv_objdetect4_5-4.5.2-2.2 openSUSE Tumbleweed:libopencv_superres4_5-4.5.2-2.2 openSUSE Tumbleweed:libopencv_videoio4_5-4.5.2-2.2 openSUSE Tumbleweed:libopencv_videostab4_5-4.5.2-2.2 openSUSE Tumbleweed:libopencv_ximgproc4_5-4.5.2-2.2 openSUSE Tumbleweed:opencv-4.5.2-2.2 openSUSE Tumbleweed:opencv-devel-4.5.2-2.2 openSUSE Tumbleweed:opencv-doc-4.5.2-2.2 openSUSE Tumbleweed:opencv4-cascades-data-4.5.2-2.2 openSUSE Tumbleweed:python3-opencv-4.5.2-2.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-14491.html CVE-2019-14491 https://bugzilla.suse.com/1144348 SUSE Bug 1144348 https://bugzilla.suse.com/1144352 SUSE Bug 1144352 An issue was discovered in OpenCV 4.1.0. There is a divide-by-zero error in cv::HOGDescriptor::getDescriptorSize in modules/objdetect/src/hog.cpp. CVE-2019-15939 openSUSE Tumbleweed:libopencv4_5-4.5.2-2.2 openSUSE Tumbleweed:libopencv_aruco4_5-4.5.2-2.2 openSUSE Tumbleweed:libopencv_face4_5-4.5.2-2.2 openSUSE Tumbleweed:libopencv_highgui4_5-4.5.2-2.2 openSUSE Tumbleweed:libopencv_imgcodecs4_5-4.5.2-2.2 openSUSE Tumbleweed:libopencv_objdetect4_5-4.5.2-2.2 openSUSE Tumbleweed:libopencv_superres4_5-4.5.2-2.2 openSUSE Tumbleweed:libopencv_videoio4_5-4.5.2-2.2 openSUSE Tumbleweed:libopencv_videostab4_5-4.5.2-2.2 openSUSE Tumbleweed:libopencv_ximgproc4_5-4.5.2-2.2 openSUSE Tumbleweed:opencv-4.5.2-2.2 openSUSE Tumbleweed:opencv-devel-4.5.2-2.2 openSUSE Tumbleweed:opencv-doc-4.5.2-2.2 openSUSE Tumbleweed:opencv4-cascades-data-4.5.2-2.2 openSUSE Tumbleweed:python3-opencv-4.5.2-2.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-15939.html CVE-2019-15939 https://bugzilla.suse.com/1149742 SUSE Bug 1149742