{"id":"RUSTSEC-2026-0115","summary":"Fragile bounds check when sampling from image","details":"A read of pixels was coded as modifying coordinates to lie within the image\nbounds. It would calculate a coordinate by adding a constant to an input and\ntaking the minimum of the resulting coordinate and 'dimension - 1'. This would\nnot protect against malicious inputs that could overflow the addition. .\nSubsequently to the tricked bounds check the image could then be sampled at\nmultiple, differently calculated coordinates exceeding the bounds.","aliases":["GHSA-5qv7-j6w5-fr4m"],"modified":"2026-05-07T08:56:41Z","published":"2026-05-01T12:00:00Z","related":["https://github.com/image-rs/imageproc/pull/778"],"database_specific":{"license":"CC0-1.0"},"references":[{"type":"PACKAGE","url":"https://crates.io/crates/imageproc"},{"type":"ADVISORY","url":"https://rustsec.org/advisories/RUSTSEC-2026-0115.html"}],"affected":[{"package":{"name":"imageproc","ecosystem":"crates.io","purl":"pkg:cargo/imageproc"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0.24.0"},{"fixed":"0.24.1"},{"introduced":"0.25.0"},{"fixed":"0.25.1"},{"introduced":"0.26.0"},{"fixed":"0.26.2"}]}],"ecosystem_specific":{"affects":{"arch":[],"functions":["imageproc::binary_descriptors::brief"],"os":[]},"affected_functions":null},"database_specific":{"categories":["memory-exposure"],"informational":"unsound","source":"https://github.com/rustsec/advisory-db/blob/osv/crates/RUSTSEC-2026-0115.json","cvss":null}}],"schema_version":"1.7.5"}