A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. An oob read vulnerability exists in Nef_2/PM_io_parser.h PM_io_parser::read_vertex() Face_of[] OOB read. An attacker can provide malicious input to trigger this vulnerability. External Reference: https://talosintelligence.com/vulnerability_reports/TALOS-2020-1225
Created CGAL tracking bugs for this issue: Affects: fedora-all [bug 1939902]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.
FEDORA-2021-0d42c7cb33 has been pushed to the Fedora 34 stable repository. If problem still persists, please make note of it in this bug report.