UBUNTU-CVE-2019-19624
- Source
- https://ubuntu.com/security/CVE-2019-19624
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2019/UBUNTU-CVE-2019-19624.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/UBUNTU-CVE-2019-19624
- Upstream
- Downstream
- Related
- Published
- 2019-12-06T15:15:00Z
- Modified
- 2025-09-08T16:45:46Z
- Severity
-
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L CVSS Calculator
- Ubuntu - low
- Summary
- [none]
- Details
-
An out-of-bounds read was discovered in OpenCV before 4.1.1. Specifically, variable coarsestscale is assumed to be greater than or equal to finestscale within the calc()/oclcalc() functions in disflow.cpp. However, this is not true when dealing with small images, leading to an out-of-bounds read of the heap-allocated arrays Ux and Uy.
- References
Affected packages
Ubuntu:Pro:18.04:LTS / opencv
Package
- Name
- opencv
- Purl
- pkg:deb/ubuntu/opencv@3.2.0+dfsg-4ubuntu0.1+esm4?arch=source&distro=esm-apps/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.2.0+dfsg-4ubuntu0.1+esm4
Affected versions
3.*
3.1.0+dfsg1-1~exp1ubuntu3
3.2.0+dfsg-3
3.2.0+dfsg-4
3.2.0+dfsg-4build1
3.2.0+dfsg-4build2
3.2.0+dfsg-4ubuntu0.1
3.2.0+dfsg-4ubuntu0.1+esm2
3.2.0+dfsg-4ubuntu0.1+esm3
Ecosystem specific
{
"binaries": [
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-calib3d-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-calib3d3.2"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-contrib-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-contrib3.2"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-core-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-core3.2"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-features2d-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-features2d3.2"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-flann-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-flann3.2"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-highgui-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-highgui3.2"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-imgcodecs-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-imgcodecs3.2"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-imgproc-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-imgproc3.2"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-ml-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-ml3.2"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-objdetect-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-objdetect3.2"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-photo-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-photo3.2"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-shape-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-shape3.2"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-stitching-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-stitching3.2"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-superres-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-superres3.2"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-ts-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-video-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-video3.2"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-videoio-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-videoio3.2"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-videostab-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-videostab3.2"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-viz-dev"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv-viz3.2"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv3.2-java"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "libopencv3.2-jni"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "opencv-data"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "python-opencv"
},
{
"binary_version": "3.2.0+dfsg-4ubuntu0.1+esm4",
"binary_name": "python3-opencv"
}
],
"availability": "Available with Ubuntu Pro: https://ubuntu.com/pro"
}