prusa-slicer

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description G-code generator for 3D printers (Prusa fork of Slic3r)
Version 2.3.3-1 [community]

Open

Group Affected Fixed Severity Status Ticket
AVG-2142 2.3.3-1 Medium Vulnerable
Issue Group Severity Remote Type Description
CVE-2020-28598 AVG-2142 Medium No Arbitrary code execution
An out-of-bounds write vulnerability exists in the Admesh stl_fix_normal_directions() functionality of Prusa Research PrusaSlicer 2.2.0 and Master (commit...
CVE-2020-28594 AVG-2142 Medium Yes Arbitrary code execution
A use-after-free vulnerability exists in the _3MF_Importer::_handle_end_model() functionality of Prusa Research PrusaSlicer 2.2.0 and Master (commit...

Resolved

Group Affected Fixed Severity Status Ticket
AVG-1566 2.2.0-11 2.3.0-1 Medium Fixed
Issue Group Severity Remote Type Description
CVE-2020-28596 AVG-1566 Medium No Arbitrary code execution
A stack-based buffer overflow vulnerability exists in the Objparser::objparse() functionality of Prusa Research PrusaSlicer before version 2.3.0. A...
CVE-2020-28595 AVG-1566 Medium No Arbitrary code execution
An out-of-bounds write vulnerability exists in the Obj.cpp load_obj() functionality of Prusa Research PrusaSlicer before version 2.3.0. A specially crafted...