10 matches found
Use After Free
Overview Affected versions of this package are vulnerable to Use After Free in the aiNode destructor in scene.cpp of the ASE file parser component. An attacker can trigger memory corruption or potentially execute arbitrary code by providing a crafted ASE file that causes the use of a previously...
UBUNTU-CVE-2026-10232
A weakness has been identified in Assimp up to 6.0.4. Affected by this vulnerability is the function aiNode::aiNode of the file scene.cpp of the component ASE File Parser. Executing a manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been made...
CVE-2026-10232 Assimp ASE File scene.cpp ~aiNode use after free
A weakness has been identified in Assimp up to 6.0.4. Affected by this vulnerability is the function aiNode::aiNode of the file scene.cpp of the component ASE File Parser. Executing a manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been made...
CLSA-2025-1763033515 qt5-qt3d: Fix of CVE-2025-3159
CVE-2025-3159: fix heap-based buffer overflow in Assimp::ASE::Parser::ParseLV4MeshBonesVertices function of ASE File Handler...
qt5-qt3d security update
An update is available for qt5-qt3d. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Qt 3D provides functionality for near-realtime simulation systems with suppo...
Moderate: Red Hat Security Advisory: qt5-qt3d security update
An update for qt5-qt3d is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
RHEL 9 : qt5-qt3d (RHSA-2025:15347)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:15347 advisory. Qt 3D provides functionality for near-realtime simulation systems with support for 2D and 3D rendering in both Qt C++ and Qt Quick...
SUSE CVE-2025-3159
A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::ASE::Parser::ParseLV4MeshBonesVertices of the file code/AssetLib/ASE/ASEParser.cpp of the component ASE File Handler. The manipulation leads to heap-based buff...
CVE-2025-3159 Open Asset Import Library Assimp ASE File ASEParser.cpp ParseLV4MeshBonesVertices heap-based overflow
A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::ASE::Parser::ParseLV4MeshBonesVertices of the file code/AssetLib/ASE/ASEParser.cpp of the component ASE File Handler. The manipulation leads to heap-based buff...
OSV-2022-410 Heap-buffer-overflow in Assimp::ASE::Parser::ParseLV1SoftSkinBlock
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47392 Crash type: Heap-buffer-overflow READ 1 Crash state: Assimp::ASE::Parser::ParseLV1SoftSkinBlock Assimp::ASE::Parser::Parse Assimp::ASEImporter::InternReadFile...