Advisories ยป MGASA-2022-0325

Updated freecad packages fix security vulnerability

Publication date: 16 Sep 2022
Type: security
Affected Mageia releases : 8
CVE: CVE-2021-45844

Description

Improper sanitization in the invocation of ODA File Converter from FreeCAD
0.19 allows an attacker to inject OS commands via a crafted filename.
(CVE-2021-45844)
                

References

SRPMS

8/core