CVE-2024-53432 – Ubuntu Security Notice USN-7227-1

https://notcve.org/view.php?id=CVE-2024-53432

21 Nov 2024 — While parsing certain malformed PLY files, PCL version 1.14.1 crashes due to an uncaught std::out_of_range exception in PCLPointCloud2::at. This issue could potentially be exploited to cause a denial-of-service (DoS) attack when processing untrusted PLY files. It was discovered that PCL incorrectly handled certain malformed files. If a user or automated system were tricked into opening a specially crafted file, an attacker could possibly exploit this to cause a denial of service. • https://github.com/PointCloudLibrary/pcl/issues/6162 • CWE-754: Improper Check for Unusual or Exceptional Conditions •