GHSA-qg8r-f7x3-25f7
Suggest an improvement- Source
- https://github.com/advisories/GHSA-qg8r-f7x3-25f7
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/05/GHSA-qg8r-f7x3-25f7/GHSA-qg8r-f7x3-25f7.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/GHSA-qg8r-f7x3-25f7
- Aliases
- Published
- 2026-05-07T03:10:13Z
- Modified
- 2026-05-07T09:11:37.802357356Z
- Severity
-
- 6.9 (Medium) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVSS Calculator
- Summary
- imageproc: Out-of-bounds read via NaN coordinates in bilinear/bicubic sampling
- Details
-
A bounds check was performed in floating points before a cast to the index passed to an unchecked access function. This checked considered
NaNcases improperly, causing them to succeed the check instead of failing it. The floating point coordinate is under caller control by passing a selected projection matrix.Carefully controlling the coordinates of an image with no data and one non-zero dimension provides an arbitrary read primitive in the first 32-bits of address space with a Bilinear sampling method.
Using bicubic sampling can result in a read of a few bytes beyond an allocation.
Other out-of-bounds reads may be possible.
- Database specific
{ "github_reviewed": true, "severity": "MODERATE", "nvd_published_at": null, "cwe_ids": [ "CWE-190" ], "github_reviewed_at": "2026-05-07T03:10:13Z" }- References
Affected packages
crates.io / imageproc
Package
- Name
- imageproc
- View open source insights on deps.dev
- Purl
- pkg:cargo/imageproc
crates.io / imageproc
Package
- Name
- imageproc
- View open source insights on deps.dev
- Purl
- pkg:cargo/imageproc
crates.io / imageproc
Package
- Name
- imageproc
- View open source insights on deps.dev
- Purl
- pkg:cargo/imageproc
crates.io / imageproc
Package
- Name
- imageproc
- View open source insights on deps.dev
- Purl
- pkg:cargo/imageproc