CLSA-2025-1763033515 qt5-qt3d: Fix of CVE-2025-3159

CVE-2025-3159: fix heap-based buffer overflow in Assimp::ASE::Parser::ParseLV4MeshBonesVertices function of ASE File Handler...

OESA-2025-1405 assimp security update

Assimp is a library to load and process geometric scenes from various data formats. Assimp aims to provide a full asset conversion pipeline for use in game engines and real-time rendering systems of any kind, but is not limited to this purpose. Security Fixes: A vulnerability classified as critic...

UBUNTU-CVE-2025-3159

A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::ASE::Parser::ParseLV4MeshBonesVertices of the file code/AssetLib/ASE/ASEParser.cpp of the component ASE File Handler. The manipulation leads to heap-based buff...

CVE-2025-3159

The CVE-2025-3159 issue concerns the Open Asset Import Library (Assimp) 5.4.3, specifically the ASE File Handler’s function Assimp::ASE::Parser::ParseLV4MeshBonesVertices. The vulnerability is a heap-based overflow in ASEParser.cpp, with local attack requirements. The advisory notes this as a cri...

CVE-2025-3159 Open Asset Import Library Assimp ASE File ASEParser.cpp ParseLV4MeshBonesVertices heap-based overflow

A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::ASE::Parser::ParseLV4MeshBonesVertices of the file code/AssetLib/ASE/ASEParser.cpp of the component ASE File Handler. The manipulation leads to heap-based buff...

CVE-2025-3015 Open Asset Import Library Assimp ASE File ASELoader.cpp BuildUniqueRepresentation out-of-bounds

A vulnerability classified as critical has been found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::ASEImporter::BuildUniqueRepresentation of the file code/AssetLib/ASE/ASELoader.cpp of the component ASE File Handler. The manipulation of the argument mIndices leads ...

Open Asset Import Library（assimp） 安全漏洞

Open Asset Import Library assimp is a library in the Open Asset Import Library open source. A security vulnerability exists in Open Asset Import Library assimp version 5.4.3, which stems from an out-of-bounds read in the ASE File Handler component...