SUSE Package Hub - openSUSE-2025-38

Update Info

openSUSE-2025-38

Security update for assimp

Type: security

Severity: important

Issued: 2025-01-31

Description:

This update for assimp fixes the following issues:

- CVE-2024-45679: Fixed a heap-based buffer overflow (boo#1230679)

References

CVE: CVE-2024-45679
Bugzilla: 1230679 VUL-0: CVE-2024-45679: assimp: Heap-based buffer overflow vulnerability in Assimp versions prior to 5.4.3 allows a local attacker to execute arbitrary code by importing a specially crafted file into the product.

Packages

assimp-5.3.1-bp156.3.6.1