VDB
KO
HIGH 7.5

PYSEC-2026-721

Out-of-bounds Read and Out-of-bounds Write in OpenCV

Details

An issue was discovered in OpenCV before 3.4.7 and 4.x before 4.1.1 (OpenCV-Python before 3.4.7.28 and 4.x before 4.1.1.26). There is an out of bounds read/write in the function HaarEvaluator::OptFeature::calc in modules/objdetect/src/cascadedetect.hpp, which leads to denial of service.

Are you affected?

Enter the version of the package you're using.

Affected packages

PyPI / opencv-contrib-python-headless
Introduced in: 0 Fixed in: 3.4.7.28
Fix pip install --upgrade 'opencv-contrib-python-headless>=3.4.7.28'

References