Unity Linux 20.1070e Security Update: assimp (UTSA-2026-006180)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006180 advisory. A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been rated as problematic. Affected by this issue is the function...

Medium: qt5-qt3d

Issue Overview: A vulnerability classified as critical has been found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::AC3DImporter::ConvertObjectSection of the file code/AssetLib/AC/ACLoader.cpp of the component AC3D File Handler. The manipulation of the argument tmp...

CVE-2025-15538

A flaw was found in Open Asset Import Library Assimp. A local attacker can exploit a use-after-free vulnerability in the Assimp::LWOImporter::FindUVChannels function by manipulating input. This could lead to a limited impact on the confidentiality, integrity, and availability of the affected syst...

CVE-2025-15538

A security vulnerability has been detected in Open Asset Import Library Assimp up to 6.0.2. Affected by this vulnerability is the function Assimp::LWOImporter::FindUVChannels of the file /src/assimp/code/AssetLib/LWO/LWOMaterial.cpp. Such manipulation leads to use after free. The attack needs to ...

CVE-2025-15538 Open Asset Import Library Assimp LWOMaterial.cpp FindUVChannels use after free

A security vulnerability has been detected in Open Asset Import Library Assimp up to 6.0.2. Affected by this vulnerability is the function Assimp::LWOImporter::FindUVChannels of the file /src/assimp/code/AssetLib/LWO/LWOMaterial.cpp. Such manipulation leads to use after free. The attack needs to ...

OESA-2026-1081 assimp security update

Assimp is a library to load and process geometric scenes from various data formats. Assimp aims to provide a full asset conversion pipeline for use in game engines and real-time rendering systems of any kind, but is not limited to this purpose. Security Fixes: A weakness has been identified in Op...

RHEL 10 : qt6-qtquick3d (RHSA-2025:22663)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:22663 advisory. The Qt 6 Quick3D library. Security Fixes: assimp: Open Asset Import Library Assimp Q3DLoader.cpp InternReadFile heap-based overflow CVE-2025-11277...

PYSEC-2025-157

A weakness has been identified in Open Asset Import Library Assimp 6.0.2. This affects the function Q3DImporter::InternReadFile of the file assimp/code/AssetLib/Q3D/Q3DLoader.cpp. Executing a manipulation can lead to heap-based buffer overflow. The attack needs to be launched locally. The exploit...

Open Asset Import Library Assimp 安全漏洞

Open Asset Import Library Assimp is an official Open Asset Import Library repository from Open Asset Import Library open source. It can load more than 40 3D file formats into a unified and clean data structure. A security vulnerability exists in Open Asset Import Library Assimp version 6.0.2, whi...

EUVD-2025-8069

Malicious code in bioql PyPI...

EUVD-2025-18386

Malicious code in bioql PyPI...

EUVD-2025-16277

Malicious code in bioql PyPI...

EUVD-2025-9625

Malicious code in bioql PyPI...

EUVD-2025-7248

Malicious code in bioql PyPI...

EUVD-2025-16278

Malicious code in bioql PyPI...

EUVD-2025-8059

Malicious code in bioql PyPI...

EUVD-2022-0210

Malicious code in bioql PyPI...

EUVD-2025-9053

Malicious code in bioql PyPI...

EUVD-2025-16217

Malicious code in bioql PyPI...

EUVD-2025-10860

Malicious code in bioql PyPI...