Mambaboy

Name of the Vulnerable Software and Affected Versions: OpenCV version 3.3.1 Description: A heap-based buffer over-read exists in the function `cv::HdrDecoder::checkSignature` in `modules/imgcodecs/src/grfmt hdr.cpp`. This issue is related to reading beyond the valid boundaries of a data buffer. Exploitation of this issue may allow a remote attacker to cause a denial of service. Recommendations: For OpenCV version 3.3.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider disabling the `cv::HdrDecoder::checkSignature` function until a patch is available.