OSV-2025-68

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/opencv/OSV-2025-68.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2025-68
Published
2025-01-28T00:00:46.845996Z
Modified
2025-02-05T14:25:02.989469Z
Summary
UNKNOWN READ in std::__1::__function::__func<cv::PngDecoder::compose_frame
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=392318892

Crash type: UNKNOWN READ
Crash state:
std::__1::__function::__func&lt;cv::PngDecoder::compose_frame
cv::ParallelLoopBodyWrapper::operator
cv::ThreadPool::run
References

Affected packages

OSS-Fuzz / opencv

Package

Name
opencv
Purl
pkg:generic/opencv

Affected ranges

Affected versions

4.*

4.11.0

5.*

5.0.0-alpha

Ecosystem specific

{
    "severity": "MEDIUM"
}

Database specific

{
    "introduced_range": "a6f72f813d307f77e7597447bdba25dcb5b6447d:ff18c9cc7904e878b10273265196e0238490e692",
    "fixed_range": "d5f69305cbfdb727865baac0f7cb5c82c5fdaab9:43cebe52eba056d9fbb1115928cf698ae44abd60"
}