slic3r - Debian Package Tracker

general

source: slic3r (main)
version: 1.3.0+dfsg1-5
maintainer: Debian 3-D Printing Packages (archive) (DMD)
uploaders: Chow Loong Jin [DMD] – Nicolas Dandrimont [DMD]
arch: any
std-ver: 4.1.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 1.2.9+dfsg-9~deb9u1
oldstable: 1.3.0+dfsg1-3
stable: 1.3.0+dfsg1-5
testing: 1.3.0+dfsg1-5
unstable: 1.3.0+dfsg1-5

versioned links

1.2.9+dfsg-9~deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.3.0+dfsg1-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.3.0+dfsg1-5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

slic3r (5 bugs: 0, 5, 0, 0)

action needed

4 security issues in stretch high

There are 4 open security issues in stretch.

4 important issues:

CVE-2021-44961: A memory leakage flaw exists in the class PerimeterGenerator of Slic3r libslic3r 1.3.0 and Master Commit b1a5500. Specially crafted stl files can exhaust available memory. An attacker can provide malicious files to trigger this vulnerability.
CVE-2021-44962: An out-of-bounds read vulnerability exists in the GCode::extrude() functionality of Slic3r libslic3r 1.3.0 and Master Commit b1a5500. A specially crafted stl file could lead to information disclosure. An attacker can provide a malicious file to trigger this vulnerability.
CVE-2021-45846: A flaw in the AMF parser of Slic3r libslic3r 1.3.0 allows an attacker to cause an application crash using a crafted AMF document, where a metadata tag lacks a "type" attribute.
CVE-2021-45847: Several missing input validations in the 3MF parser component of Slic3r libslic3r 1.3.0 can each allow an attacker to cause an application crash using a crafted 3MF input file.

Created: 2022-02-03 Last update: 2022-03-04 05:34

4 security issues in sid high

There are 4 open security issues in sid.

4 important issues:

CVE-2021-44961: A memory leakage flaw exists in the class PerimeterGenerator of Slic3r libslic3r 1.3.0 and Master Commit b1a5500. Specially crafted stl files can exhaust available memory. An attacker can provide malicious files to trigger this vulnerability.
CVE-2021-44962: An out-of-bounds read vulnerability exists in the GCode::extrude() functionality of Slic3r libslic3r 1.3.0 and Master Commit b1a5500. A specially crafted stl file could lead to information disclosure. An attacker can provide a malicious file to trigger this vulnerability.
CVE-2021-45846: A flaw in the AMF parser of Slic3r libslic3r 1.3.0 allows an attacker to cause an application crash using a crafted AMF document, where a metadata tag lacks a "type" attribute.
CVE-2021-45847: Several missing input validations in the 3MF parser component of Slic3r libslic3r 1.3.0 can each allow an attacker to cause an application crash using a crafted 3MF input file.

Created: 2022-02-03 Last update: 2022-03-04 05:34

4 security issues in buster high

There are 4 open security issues in buster.

4 important issues:

CVE-2021-44961: A memory leakage flaw exists in the class PerimeterGenerator of Slic3r libslic3r 1.3.0 and Master Commit b1a5500. Specially crafted stl files can exhaust available memory. An attacker can provide malicious files to trigger this vulnerability.
CVE-2021-44962: An out-of-bounds read vulnerability exists in the GCode::extrude() functionality of Slic3r libslic3r 1.3.0 and Master Commit b1a5500. A specially crafted stl file could lead to information disclosure. An attacker can provide a malicious file to trigger this vulnerability.
CVE-2021-45846: A flaw in the AMF parser of Slic3r libslic3r 1.3.0 allows an attacker to cause an application crash using a crafted AMF document, where a metadata tag lacks a "type" attribute.
CVE-2021-45847: Several missing input validations in the 3MF parser component of Slic3r libslic3r 1.3.0 can each allow an attacker to cause an application crash using a crafted 3MF input file.

Created: 2022-02-03 Last update: 2022-03-04 05:34

4 security issues in bullseye high

There are 4 open security issues in bullseye.

4 important issues:

CVE-2021-44961: A memory leakage flaw exists in the class PerimeterGenerator of Slic3r libslic3r 1.3.0 and Master Commit b1a5500. Specially crafted stl files can exhaust available memory. An attacker can provide malicious files to trigger this vulnerability.
CVE-2021-44962: An out-of-bounds read vulnerability exists in the GCode::extrude() functionality of Slic3r libslic3r 1.3.0 and Master Commit b1a5500. A specially crafted stl file could lead to information disclosure. An attacker can provide a malicious file to trigger this vulnerability.
CVE-2021-45846: A flaw in the AMF parser of Slic3r libslic3r 1.3.0 allows an attacker to cause an application crash using a crafted AMF document, where a metadata tag lacks a "type" attribute.
CVE-2021-45847: Several missing input validations in the 3MF parser component of Slic3r libslic3r 1.3.0 can each allow an attacker to cause an application crash using a crafted 3MF input file.

Created: 2022-02-03 Last update: 2022-03-04 05:34

4 security issues in bookworm high

There are 4 open security issues in bookworm.

4 important issues:

CVE-2021-44961: A memory leakage flaw exists in the class PerimeterGenerator of Slic3r libslic3r 1.3.0 and Master Commit b1a5500. Specially crafted stl files can exhaust available memory. An attacker can provide malicious files to trigger this vulnerability.
CVE-2021-44962: An out-of-bounds read vulnerability exists in the GCode::extrude() functionality of Slic3r libslic3r 1.3.0 and Master Commit b1a5500. A specially crafted stl file could lead to information disclosure. An attacker can provide a malicious file to trigger this vulnerability.
CVE-2021-45846: A flaw in the AMF parser of Slic3r libslic3r 1.3.0 allows an attacker to cause an application crash using a crafted AMF document, where a metadata tag lacks a "type" attribute.
CVE-2021-45847: Several missing input validations in the 3MF parser component of Slic3r libslic3r 1.3.0 can each allow an attacker to cause an application crash using a crafted 3MF input file.

Created: 2022-02-03 Last update: 2022-03-04 05:34

AppStream hints: 1 error and 1 warning high

AppStream found metadata issues for packages:

slic3r: 1 error and 1 warning

You should get rid of them to provide more metadata about this software.

Created: 2018-06-04 Last update: 2022-01-21 06:05

Does not build reproducibly during testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2018-11-14 Last update: 2022-05-28 22:09

lintian reports 6 warnings normal

Lintian reports 6 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2021-01-27 Last update: 2021-01-27 03:05

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.6.1 instead of 4.1.0).

Created: 2017-08-12 Last update: 2022-05-11 23:24

news

[rss feed]

[2021-07-12] slic3r 1.3.0+dfsg1-5 MIGRATED to testing (Debian testing watch)
[2021-04-26] Accepted slic3r 1.3.0+dfsg1-5 (source) into unstable (Chow Loong Jin)
[2021-03-28] slic3r 1.3.0+dfsg1-4 MIGRATED to testing (Debian testing watch)
[2021-03-22] Accepted slic3r 1.3.0+dfsg1-4 (source) into unstable (Chow Loong Jin)
[2020-12-26] slic3r 1.3.0+dfsg1-3.2 MIGRATED to testing (Debian testing watch)
[2020-12-20] Accepted slic3r 1.3.0+dfsg1-3.2 (source) into unstable (Anton Gladky)
[2020-06-14] slic3r 1.3.0+dfsg1-3.1 MIGRATED to testing (Debian testing watch)
[2020-06-08] Accepted slic3r 1.3.0+dfsg1-3.1 (source) into unstable (Sebastian Ramacher)
[2018-11-14] slic3r 1.3.0+dfsg1-3 MIGRATED to testing (Debian testing watch)
[2018-11-08] Accepted slic3r 1.3.0+dfsg1-3 (source amd64) into unstable (Chow Loong Jin)
[2018-11-04] slic3r REMOVED from testing (Debian testing watch)
[2018-05-27] Accepted slic3r 1.3.0+dfsg1-2 (source amd64) into unstable (Chow Loong Jin)
[2018-05-27] Accepted slic3r 1.3.0+dfsg1-1 (source amd64) into unstable (Chow Loong Jin)
[2018-02-25] Accepted slic3r 1.2.9+dfsg-9~deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Andreas Beckmann)
[2018-01-11] slic3r 1.2.9+dfsg-9 MIGRATED to testing (Debian testing watch)
[2018-01-06] Accepted slic3r 1.2.9+dfsg-9 (source amd64) into unstable (Chow Loong Jin)
[2018-01-03] slic3r 1.2.9+dfsg-8 MIGRATED to testing (Debian testing watch)
[2018-01-02] slic3r REMOVED from testing (Debian testing watch)
[2017-12-02] Accepted slic3r 1.2.9+dfsg-6.1~deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Andreas Beckmann)
[2017-10-15] slic3r 1.2.9+dfsg-8 MIGRATED to testing (Debian testing watch)
[2017-10-10] slic3r 1.2.9+dfsg-7 MIGRATED to testing (Debian testing watch)
[2017-10-09] Accepted slic3r 1.2.9+dfsg-8 (source amd64) into unstable (Chow Loong Jin)
[2017-10-03] Accepted slic3r 1.2.9+dfsg-7 (source amd64) into unstable (Chow Loong Jin)
[2017-09-29] slic3r REMOVED from testing (Debian testing watch)
[2017-08-17] slic3r 1.2.9+dfsg-6.1 MIGRATED to testing (Debian testing watch)
[2017-08-11] Accepted slic3r 1.2.9+dfsg-6.1 (source) into unstable (gregor herrmann)
[2016-11-11] slic3r 1.2.9+dfsg-6 MIGRATED to testing (Debian testing watch)
[2016-11-05] Accepted slic3r 1.2.9+dfsg-6 (source amd64) into unstable (Chow Loong Jin)
[2016-09-23] slic3r 1.2.9+dfsg-5 MIGRATED to testing (Debian testing watch)
[2016-09-18] Accepted slic3r 1.2.9+dfsg-5 (source amd64) into unstable (Rock Storm) (signed by: Chow Loong Jin)

bugs [bug history graph]

all: 6
RC: 0
I&N: 5
M&W: 1
F&P: 0
patch: 0

links

homepage
lintian (0, 6)
buildd: logs, clang, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.3.0+dfsg1-5build1
3 bugs