You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The project contains unpatched sources from ADMesh, in which CVE-2022-38072 was reported with high severity. The function stl_fix_normal_directions() from Slic3r/xs/src/admesh/normals.c does not include security patches and updates available in newer versions of ADMesh. The fix for CVE can be found in this commit: ADMesh commit.
If the affected function is used somewhere, I recommend updating it to the latest version.
My report was primarily based on a static analysis tool developed at CAST, which flagged the potential vulnerability due to similarities in the codebase.
The text was updated successfully, but these errors were encountered:
The project contains unpatched sources from ADMesh, in which CVE-2022-38072 was reported with high severity. The function
stl_fix_normal_directions()fromSlic3r/xs/src/admesh/normals.cdoes not include security patches and updates available in newer versions of ADMesh. The fix for CVE can be found in this commit: ADMesh commit.If the affected function is used somewhere, I recommend updating it to the latest version.
My report was primarily based on a static analysis tool developed at CAST, which flagged the potential vulnerability due to similarities in the codebase.
The text was updated successfully, but these errors were encountered: