Your submission was sent successfully! Close

CVE-2021-45948

Published: 1 January 2022

Open Asset Import Library (aka assimp) 5.1.0 and 5.1.1 has a heap-based buffer overflow in _m3d_safestr (called from m3d_load and Assimp::M3DWrapper::M3DWrapper).

Priority

Medium

CVSS 3 base score: 5.5

Status

Package Release Status
assimp
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(code not present)
focal Not vulnerable
(code not present)
hirsute Ignored
(reached end-of-life)
impish Not vulnerable
(code not present)
jammy Not vulnerable
(5.2.2~ds0-1)
trusty Ignored
(out of standard support, was not-affected)
upstream
Released (5.1.1~ds0-1)
xenial Ignored
(out of standard support, was not-affected)