12 matches found
Security update for doomsday (important)
openSUSE Security Update: Security update for doomsday Announcement ID: openSUSE-SU-2025:0117-1 Rating: important References: 1239917 Cross-References: CVE-2025-2592 CVSS scores: CVE-2025-2592 SUSE: 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Affected Products: openSUSE...
Linux Distros Unpatched Vulnerability : CVE-2025-2592
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability, which was classified as critical, has been found in Open Asset Import Library Assimp 5.4.3. This issue affects the function...
openSUSE Security Advisory (openSUSE-SU-2025:0117-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE 15 Security Update : doomsday (openSUSE-SU-2025:0117-1)
The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2025:0117-1 advisory. - CVE-2025-2592: Use system assimp library to fix a heap-based buffer overflow boo1239917 Tenable has extracted the preceding description block directly...
OPENSUSE-SU-2025:0117-1 Security update for doomsday
This update for doomsday fixes the following issues: - CVE-2025-2592: Use system assimp library to fix a heap-based buffer overflow boo1239917...
OPENSUSE-SU-2025:0113-1 Security update for assimp
This update for assimp fixes the following issues: - CVE-2024-48425: Fixed SEGV in Assimp:SplitLargeMeshesProcessTriangle:UpdateNode boo1232324 - CVE-2024-48423: Fixed a arbitrary code execution via CallbackToLogRedirector boo1232322 - CVE-2024-48424: Fixed a heap-buffer-overflow in...
CVE-2025-2592
A flaw was found in the Open Asset Import Library assimp. In affected versions, a heap-based buffer overflow condition can be triggered when processing a malformed CSM file. This may lead to an application crash or other undefined behavior...
CVE-2025-2592
A vulnerability, which was classified as critical, has been found in Open Asset Import Library Assimp 5.4.3. This issue affects the function CSMImporter::InternReadFile of the file code/AssetLib/CSM/CSMLoader.cpp. The manipulation leads to heap-based buffer overflow. The attack may be initiated...
CVE-2025-2592 Open Asset Import Library Assimp CSMLoader.cpp InternReadFile heap-based overflow
A vulnerability, which was classified as critical, has been found in Open Asset Import Library Assimp 5.4.3. This issue affects the function CSMImporter::InternReadFile of the file code/AssetLib/CSM/CSMLoader.cpp. The manipulation leads to heap-based buffer overflow. The attack may be initiated...
CVE-2025-2592
Open Asset Import Library Assimp 5.4.3 contains a heap-based buffer overflow in CSMImporter::InternReadFile (CSMLoader.cpp). This vulnerability can be exploited remotely to potentially execute code. A patch is available (commit 2690e354da0c681db000cfd892a55226788f2743); applying it fixes the issu...
CVE-2025-2592
A vulnerability, which was classified as critical, has been found in Open Asset Import Library Assimp 5.4.3. This issue affects the function CSMImporter::InternReadFile of the file code/AssetLib/CSM/CSMLoader.cpp. The manipulation leads to heap-based buffer overflow. The attack may be initiated...
CVE-2025-2592 Open Asset Import Library Assimp CSMLoader.cpp InternReadFile heap-based overflow
A vulnerability, which was classified as critical, has been found in Open Asset Import Library Assimp 5.4.3. This issue affects the function CSMImporter::InternReadFile of the file code/AssetLib/CSM/CSMLoader.cpp. The manipulation leads to heap-based buffer overflow. The attack may be initiated...