libMeshb 7.61 MESH File GmfOpenMesh buffer overflow

A vulnerability was found in libMeshb 7.61. It has been declared as problematic. Affected by this vulnerability is the function GmfOpenMesh of the component MESH File Handler. Applying the patch 8cd68c54e0647c0030ae4506a225ad4a2655c316 is able to eliminate this problem. The bugfix is ready for download at github.com.

Field01/13/2022 06:24 AM01/15/2022 11:16 AM
namelibMeshblibMeshb
version7.617.61
componentMESH File HandlerMESH File Handler
functionGmfOpenMeshGmfOpenMesh
cwe120 (memory corruption)120 (memory corruption)
risk22
cvss3_vuldb_acLL
cvss3_vuldb_sUU
cvss3_vuldb_cNN
cvss3_vuldb_iNN
cvss3_vuldb_aLL
cvss3_vuldb_rlOO
cvss3_vuldb_rcCC
identifier2121
urlhttps://github.com/LoicMarechal/libMeshb/issues/21https://github.com/LoicMarechal/libMeshb/issues/21
namePatchPatch
patch_name8cd68c54e0647c0030ae4506a225ad4a2655c3168cd68c54e0647c0030ae4506a225ad4a2655c316
patch_urlhttps://github.com/LoicMarechal/libMeshb/commit/8cd68c54e0647c0030ae4506a225ad4a2655c316https://github.com/LoicMarechal/libMeshb/commit/8cd68c54e0647c0030ae4506a225ad4a2655c316
cveCVE-2021-46225CVE-2021-46225
cve_assigned16417692001641769200
date1642028400 (01/13/2022)1642028400 (01/13/2022)
cvss2_vuldb_acLL
cvss2_vuldb_ciNN
cvss2_vuldb_iiNN
cvss2_vuldb_aiPP
cvss2_vuldb_rcCC
cvss2_vuldb_rlOFOF
cvss2_vuldb_avAA
cvss2_vuldb_auSS
cvss2_vuldb_eNDND
cvss3_vuldb_avAA
cvss3_vuldb_prLL
cvss3_vuldb_uiNN
cvss3_vuldb_eXX
cvss2_vuldb_basescore2.72.7
cvss2_vuldb_tempscore2.32.3
cvss3_vuldb_basescore3.53.5
cvss3_vuldb_tempscore3.43.4
cvss3_meta_basescore3.53.5
cvss3_meta_tempscore3.43.4
price_0day$0-$5k$0-$5k
cve_nvd_summaryA buffer overflow in the GmfOpenMesh() function of libMeshb v7.61 allows attackers to cause a Denial of Service (DoS) via a crafted MESH file.

Might our Artificial Intelligence support you?

Check our Alexa App!