https://bugzilla.redhat.com/show_bug.cgi?id=2064174
Bug ID: 2064174
Summary: CVE-2021-44962 slic3r: specially crafted stl file
could lead to information disclosure
Product: Security Response
Hardware: All
OS: Linux
Status: NEW
Component: vulnerability
Keywords: Security
Severity: medium
Priority: medium
Assignee: security-response-team(a)redhat.com
Reporter: mrehak(a)redhat.com
CC: mhroncok(a)redhat.com,
perl-devel(a)lists.fedoraproject.org
Target Milestone: ---
Classification: Other
An out-of-bounds read vulnerability exists in the GCode::extrude()
functionality of Slic3r libslic3r 1.3.0 and Master Commit b1a5500. A specially
crafted stl file could lead to information disclosure. An attacker can provide
a malicious file to trigger this vulnerability.
Reference:
https://hackmd.io/KSI1bwGfSyO7T8UCf0HeTw
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2064174