OSV-2023-402

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/assimp/OSV-2023-402.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2023-402
Published
2023-05-18T14:01:38.415215Z
Modified
2023-05-18T14:01:38.415480Z
Summary
Heap-use-after-free in Assimp::FBXExporter::WriteObjects
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=59036

Crash type: Heap-use-after-free READ 4
Crash state:
Assimp::FBXExporter::WriteObjects
Assimp::FBXExporter::ExportBinary
Assimp::ExportSceneFBX
References

Affected packages

OSS-Fuzz / assimp

Package

Name
assimp
Purl
pkg:generic/assimp

Affected ranges

Type
GIT
Repo
https://github.com/assimp/assimp.git
Events
Introduced
9d6b32f5c5118e67e99d4be3087f49ad0b7660de
Fixed
b3a1c72c8f03275fcfea4a1b1ff3a3350b201664

Ecosystem specific 

{
    "severity": "HIGH"
}

Database specific

source 
"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/assimp/OSV-2023-402.yaml"