1390 matches found
DEBIAN-CVE-2025-5166
A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been classified as problematic. Affected is the function MDCImporter::InternReadFile of the file assimp/code/AssetLib/MDC/MDCLoader.cpp of the component MDC File Parser. The manipulation of the argument pcVerts leads to...
CVE-2025-5168 Open Asset Import Library Assimp MDLLoader.cpp ImportUVCoordinate_3DGS_MDL345 out-of-bounds
A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been rated as problematic. Affected by this issue is the function MDLImporter::ImportUVCoordinate3DGSMDL345 of the file assimp/code/AssetLib/MDL/MDLLoader.cpp. The manipulation of the argument iIndex leads to out-of-bound...
CVE-2025-5168 Open Asset Import Library Assimp MDLLoader.cpp ImportUVCoordinate_3DGS_MDL345 out-of-bounds
A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been rated as problematic. Affected by this issue is the function MDLImporter::ImportUVCoordinate3DGSMDL345 of the file assimp/code/AssetLib/MDL/MDLLoader.cpp. The manipulation of the argument iIndex leads to out-of-bound...
CVE-2025-5168
CVE-2025-5168 affects Open Asset Import Library Assimp 5.4.3. The vulnerable component is the function MDLImporter::ImportUVCoordinate_3DGS_MDL345 in the file assimp/code/AssetLib/MDL/MDLLoader.cpp , where manipulation of the argument iIndex leads to an out-of-bounds read. A local attack is requi...
CVE-2025-5167 Open Asset Import Library Assimp LWOLoader.h GetS0 out-of-bounds
A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been declared as problematic. Affected by this vulnerability is the function LWOImporter::GetS0 in the library assimp/code/AssetLib/LWO/LWOLoader.h. The manipulation of the argument out leads to out-of-bounds read. The...
CVE-2025-5167
CVE-2025-5167 affects Open Asset Import Library Assimp, version 5.4.3. The vulnerability is in LWOImporter::GetS0 (LWOLoader.h), where manipulating the argument can cause an out-of-bounds read. Evidence indicates the issue requires local access, the exploit has been disclosed publicly, and resear...
CVE-2025-5167 Open Asset Import Library Assimp LWOLoader.h GetS0 out-of-bounds
A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been declared as problematic. Affected by this vulnerability is the function LWOImporter::GetS0 in the library assimp/code/AssetLib/LWO/LWOLoader.h. The manipulation of the argument out leads to out-of-bounds read. The...
CVE-2025-5165
A vulnerability was found in Open Asset Import Library Assimp 5.4.3 and classified as problematic. This issue affects the function MDCImporter::ValidateSurfaceHeader of the file assimp/code/AssetLib/MDC/MDCLoader.cpp. The manipulation of the argument pcSurface2 leads to out-of-bounds read...
CVE-2025-5165
A vulnerability was found in Open Asset Import Library Assimp 5.4.3 and classified as problematic. This issue affects the function MDCImporter::ValidateSurfaceHeader of the file assimp/code/AssetLib/MDC/MDCLoader.cpp. The manipulation of the argument pcSurface2 leads to out-of-bounds read...
CVE-2025-5166 Open Asset Import Library Assimp MDC File Parser MDCLoader.cpp InternReadFile out-of-bounds
A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been classified as problematic. Affected is the function MDCImporter::InternReadFile of the file assimp/code/AssetLib/MDC/MDCLoader.cpp of the component MDC File Parser. The manipulation of the argument pcVerts leads to...
CVE-2025-5166 Open Asset Import Library Assimp MDC File Parser MDCLoader.cpp InternReadFile out-of-bounds
A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been classified as problematic. Affected is the function MDCImporter::InternReadFile of the file assimp/code/AssetLib/MDC/MDCLoader.cpp of the component MDC File Parser. The manipulation of the argument pcVerts leads to...
CVE-2025-5166
Open Asset Import Library Assimp 5.4.3 contains CVE-2025-5166 affecting MDCImporter::InternReadFile in MDCLoader.cpp (MDC File Parser). The manipulation of the argument pcVerts leads to an out-of-bounds read and local access may be exploited. Public disclosure of the exploit is noted. Connected O...
CVE-2025-5165
A vulnerability was found in Open Asset Import Library Assimp 5.4.3 and classified as problematic. This issue affects the function MDCImporter::ValidateSurfaceHeader of the file assimp/code/AssetLib/MDC/MDCLoader.cpp. The manipulation of the argument pcSurface2 leads to out-of-bounds read...
CVE-2025-5165
Summary (CVE-2025-5165): Open Asset Import Library Assimp 5.4.3 contains a vulnerability in MDCImporter::ValidateSurfaceHeader (MDCLoader.cpp) where manipulating argument pcSurface2 yields an out-of-bounds read. The issue requires local access to exploit and, per OSV updates, has been combined wi...
CVE-2025-5165 Open Asset Import Library Assimp MDCLoader.cpp ValidateSurfaceHeader out-of-bounds
A vulnerability was found in Open Asset Import Library Assimp 5.4.3 and classified as problematic. This issue affects the function MDCImporter::ValidateSurfaceHeader of the file assimp/code/AssetLib/MDC/MDCLoader.cpp. The manipulation of the argument pcSurface2 leads to out-of-bounds read...
DEBIAN-CVE-2025-29476
Buffer Overflow vulnerability in compresschunkfuzzer with oss-fuzz on commit 16450518afddcb3139de627157208e49bfef6987 in c-blosc2 v.2.17.0 and before...
UBUNTU-CVE-2025-29476
Buffer Overflow vulnerability in compresschunkfuzzer with oss-fuzz on commit 16450518afddcb3139de627157208e49bfef6987 in c-blosc2 v.2.17.0 and before...
PT-2025-15039 · C-Blosc2 · C-Blosc2
Name of the Vulnerable Software and Affected Versions: c-blosc2 versions 2.17.0 and before Description: The issue is related to a Buffer Overflow vulnerability in the compress chunk fuzzer function when used with oss-fuzz. This vulnerability is identified in c-blosc2 on commit...
C-Blosc2 安全漏洞
C-Blosc2 is a fast, compressed, persistent binary data storage library for C from the Blosc open source. A security vulnerability exists in C-Blosc2 v.2.17.0 and earlier versions that stems from a buffer overflow problem in compresschunkfuzzer...
CVE-2022-49733 ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC
In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: oss: Fix race at SNDCTLDSPSYNC There is a small race window at sndpcmosssync that is called from OSS PCM SNDCTLDSPSYNC ioctl; namely the function calls sndpcmossmakeready at first, then takes the paramslock mutex for t...