An out-of-bounds read vulnerability exists in the Obj File TriangleMesh::TriangleMesh() functionality of Slic3r libslic3r 1.3.0 and Master Commit 92abbc42. A specially crafted obj file could lead to information disclosure. An attacker can provide a malicious file to trigger this vulnerability.
Upstream Issue: https://github.com/slic3r/Slic3r/issues/5074
Package list is empty or all packages have requested keywords.
Nothing upstream so far.
We no longer have this package in tree. Closing.
(In reply to Piotr Karbowski from comment #9)
> We no longer have this package in tree. Closing.
... which isn't what you should do for security bugs. As far as we're concerned, the vulnerability is fixed in ::gentoo.