CVE-2020-28605: 
Linux Debian vulnerability analysis and mitigation

Multiple code execution vulnerabilities exist in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. The vulnerability was discovered and disclosed in February 2021, affecting the CGAL Project libcgal CGAL-5.1.1 version. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could lead to code execution (Talos).

The vulnerability specifically exists in the Nef2/PMioparser.h PMioparser::readhedge() e->set_vertex() function. The issue stems from improper validation of user-supplied data, which can result in a type confusion condition. The vulnerability has been assigned a CVSS v3.1 base score of 8.8 HIGH (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) by NIST NVD, while Talos assigned it a CVSS v3.0 score of 10.0 CRITICAL (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H). The vulnerability is tracked under CWE-125 (Out-of-bounds Read) and CWE-129 (Improper Validation of Array Index) (NVD).

The vulnerability allows an attacker to provide malicious input that can trigger out-of-bounds read and type confusion conditions. This could potentially lead to code execution in the context of the current process. The impact is particularly severe as it affects the core functionality of CGAL's polygon parsing system (Talos).

The vulnerability has been addressed in subsequent versions of CGAL. Users are recommended to upgrade to version 5.4.1 or later. For Debian 10 (buster), the fix was implemented in version 4.13-1+deb10u1 (Debian LTS, Gentoo).