prusa-slicer
| Link | package | bugs open | bugs closed | Wiki | GitHub | web search |
| Description | G-code generator for 3D printers (Prusa fork of Slic3r) |
| Version | 2.8.1-2 [extra] |
Open
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-2142 | 2.3.3-3 | Medium | Vulnerable |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2020-28598 | AVG-2142 | Medium | No | Arbitrary code execution | An out-of-bounds write vulnerability exists in the Admesh stl_fix_normal_directions() functionality of Prusa Research PrusaSlicer 2.2.0 and Master (commit... |
| CVE-2020-28594 | AVG-2142 | Medium | Yes | Arbitrary code execution | A use-after-free vulnerability exists in the _3MF_Importer::_handle_end_model() functionality of Prusa Research PrusaSlicer 2.2.0 and Master (commit... |
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-1566 | 2.2.0-11 | 2.3.0-1 | Medium | Fixed |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2020-28596 | AVG-1566 | Medium | No | Arbitrary code execution | A stack-based buffer overflow vulnerability exists in the Objparser::objparse() functionality of Prusa Research PrusaSlicer before version 2.3.0. A... |
| CVE-2020-28595 | AVG-1566 | Medium | No | Arbitrary code execution | An out-of-bounds write vulnerability exists in the Obj.cpp load_obj() functionality of Prusa Research PrusaSlicer before version 2.3.0. A specially crafted... |