cx418y

Security Risk: av-4.11.0.86 includes vulnerable libgfortran version (CVE-2014-5044)

1

Hi maintainers, I’ve detected that the PyPI package `opencv-python-4.11.0.86` includes a binary dependency (`opencv_python.libs/libgfortran-91cc3cb1.so.3.0.0`), which is vulnerable to **CVE-2014-5044**. **CVE Details:** - **Description:** Multiple integer overflows in libgfortran might allow...