{"id":"OSV-2025-486","summary":"Bad-cast to cv::PngDecoder from invalid vptr","details":"OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=426783958\n\n```\nCrash type: Bad-cast\nCrash state:\nBad-cast to cv::PngDecoder from invalid vptr\ncv::PngDecoder::readData\ncv::imdecode_\n```\n","modified":"2025-06-24T00:16:24.786690Z","published":"2025-06-24T00:16:24.786334Z","references":[{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=426783958"}],"affected":[{"package":{"name":"opencv","ecosystem":"OSS-Fuzz","purl":"pkg:generic/opencv"},"ranges":[{"type":"GIT","repo":"https://github.com/opencv/opencv.git","events":[{"introduced":"850b686f8a9a1bbadd975910aee815acaf0d6e50"},{"fixed":"dac243bd265e79af2315ce04fac2a0a5bdf47efe"}]}],"versions":["4.12.0","5.0.0-alpha"],"ecosystem_specific":{"severity":"HIGH"},"database_specific":{"fixed_range":"1fdff6da75c6c2e745c3aab9a0a8864dba4c6c1c:dac243bd265e79af2315ce04fac2a0a5bdf47efe","introduced_range":"32598639244ada2b5095baf08118a2ec80c6bb37:1950c4dbb993c60f11ddc8adf3c4eeab998fc175","source":"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/opencv/OSV-2025-486.yaml"}}],"schema_version":"1.7.3"}