opencv-python icon indicating copy to clipboard operation
opencv-python copied to clipboard

Published 20 hours ago verified publisher icon opencv

【CVE】libbz2-a273e504.so.1.0.6 still has 2 CVE

Open MoonLord-LM opened this issue 1 year ago • 1 comments

This issue seems to be still not fixed? https://github.com/opencv/opencv-python/issues/659

libbz2-a273e504.so.1.0.6 has 2 CVE CVE-2019-12900 CVE-2016-3189

installation method: pip install opencv-python get opencv_python-4.5.5.64-cp36-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl

MoonLord-LM avatar Aug 04 '22 07:08 MoonLord-LM

opencv-python4.6.0.66 has the same issue

MoonLord-LM avatar Aug 04 '22 07:08 MoonLord-LM

This issue is fixed in https://github.com/opencv/opencv-python/pull/715 and the next release of packages will be without this lib in case of it is unused there.

asenyaev avatar Aug 26 '22 12:08 asenyaev