File _patchinfo of Package patchinfo.12924

<patchinfo incident="12924">
  <issue tracker="bnc" id="1149742">VUL-1: CVE-2019-15939: opencv: divide-by-zero error in cv:HOGDescriptor:getDescriptorSize in modules/objdetect/src/hog.cpp</issue>
  <issue tracker="bnc" id="1144352">VUL-1: CVE-2019-14491: opencv: An issue was discovered in OpenCV before 3.4.7 and 4.x before 4.1.1. There is an out of bounds read in the function cv:predictOrdered&lt;cv:HaarEvaluator&gt;, leading to DOS</issue>
  <issue tracker="bnc" id="1144348">VUL-1: CVE-2019-14492: opencv: An issue was discovered in OpenCV before 3.4.7 and 4.x before 4.1.1. There is an out of bounds read/write in the function HaarEvaluator:OptFeature:calc, which leads to denial of service</issue>
  <issue tracker="bnc" id="1154091">opencv-devel is broken with "No rule to make target 'opencv_calib3d-NOTFOUND"</issue>
  <issue tracker="cve" id="2019-15939"/>
  <issue tracker="cve" id="2019-14492"/>
  <issue tracker="cve" id="2019-14491"/>
  <packager>mgorse</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for opencv</summary>
  <description>This update for opencv fixes the following issues:

Security issues fixed:

- CVE-2019-14491: Fixed an out of bounds read in the function cv:predictOrdered&lt;cv:HaarEvaluator&gt;, leading to DOS (bsc#1144352).
- CVE-2019-14492: Fixed an out of bounds read/write in the function HaarEvaluator:OptFeature:calc, which leads to denial of service (bsc#1144348).
- CVE-2019-15939: Fixed a divide-by-zero error in cv:HOGDescriptor:getDescriptorSize (bsc#1149742).

Non-security issue fixed:

- Fixed an issue in opencv-devel that broke builds with "No rule to make target opencv_calib3d-NOTFOUND" (bsc#1154091).
</description>
</patchinfo>
openSUSE Build Service is sponsored by