CVE-2020-28618: 
Linux Debian vulnerability analysis and mitigation

Multiple code execution vulnerabilities exist in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. The vulnerability, identified as CVE-2020-28618, was discovered in the NefS2/SNCioparser.h component, specifically in the SNCioparser::readvertex() vh->shalfloop() function. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could result in code execution (Talos Report).

The vulnerability is characterized by an out-of-bounds read vulnerability in the vh->shalfloop() function within the NefS2/SNCio_parser.h file. The issue occurs when processing input data without proper bounds checking. The vulnerability has been assigned a CVSS v3.1 Base Score of 8.8 HIGH (Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) by NIST NVD, while Talos assigned it a CVSS v3.0 score of 10.0 CRITICAL (Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H). The vulnerability is associated with CWE-125 (Out-of-bounds Read) and CWE-129 (Improper Validation of Array Index) (NVD).

The vulnerability can lead to code execution through out-of-bounds read and type confusion when processing specially crafted malformed files. An attacker can trigger this vulnerability by providing malicious input, potentially leading to arbitrary code execution on the affected system (Talos Report).

For Debian 10 (buster), the vulnerability has been fixed in version 4.13-1+deb10u1. Gentoo users should upgrade to version 5.4.1 or later of the CGAL package. System administrators are recommended to upgrade their CGAL packages to the latest available version (Debian LTS, Gentoo Security).