openscad

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description The programmers solid 3D CAD modeller
Version 2021.01-11 [extra]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-1622 2019.05-9 2021.01-1 Medium Fixed FS#70052
Issue Group Severity Remote Type Description
CVE-2020-28600 AVG-1622 Medium No Arbitrary code execution
An out-of-bounds write vulnerability exists in the import_stl.cc:import_stl() functionality of Openscad openscad-2020.12-RC2. A specially crafted STL file...
CVE-2020-28599 AVG-1622 Medium No Arbitrary code execution
A stack-based buffer overflow vulnerability exists in the import_stl.cc:import_stl() functionality of Openscad openscad-2020.12-RC2. A specially crafted STL...