6 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-0497
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerbiility was found in Openscad, where a .scad file with no trailing newline could cause an out-of- bounds read during parsing of annotations. CVE-2022-04...
Fedora 37 : openscad (2022-2e64749f77)
The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-2e64749f77 advisory. Automatic update for openscad-2021.01-8.fc37. Changelog Tue Apr 5 2022 Lumr Balhar - 2021.01-8 - Security fixes for CVE-2022-0496 and CVE-2022-0497 ...
CVE-2022-0497
OpenSCAD is affected by CVE-2022-0497. The vulnerability is an out-of-bounds read during parsing of annotations in a .scad file that ends without a trailing newline. The root cause is in the comment/annotation parsing path. The CVSSv3.1 score is 7.1 (HIGH) with LOCAL attack vector, LOW attack com...
Security fix for the ALT Linux 10 package openscad version 2021.01-alt4
2021.01-alt4 built June 23, 2022 Anton Midyukov in task 302498 --- June 20, 2022 Anton Midyukov - Fixes: + CVE-2022-0496 Out-of-bounds memory access in DXF loader path identification + CVE-2022-0497 Out-of-bounds memory access in comment parser + Fix build issue with overloaded join. - cleanup sp...
Mageia: Security Advisory (MGASA-2022-0148)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated openscad packages fix security vulnerability
Out-of-bounds memory access in DXF loader. CVE-2022-0496 Out-of-bounds memory access in comment parser. CVE-2022-0497...