OSV-2026-521

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/assimp/OSV-2026-521.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2026-521
Published
2026-04-04T00:05:03.478370Z
Modified
2026-07-03T14:33:49.012945Z
Summary
UNKNOWN READ in unsigned long Assimp::StreamReader<true, true>::Get<unsigned long>
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=499121788

Crash type: UNKNOWN READ
Crash state:
unsigned long Assimp::StreamReader<true, true>::Get<unsigned long>
bool Assimp::Blender::Structure::ResolvePointer<std::__1::shared_ptr, Assimp::Bl
bool Assimp::Blender::Structure::ReadFieldPtr<2, Assimp::Blender::vector, std::_
References

Affected packages

OSS-Fuzz / assimp

Package

Name
assimp
Purl
pkg:generic/assimp

Affected ranges

Type
GIT
Repo
https://github.com/assimp/assimp.git
Events

Affected versions

Other
master
v6.*
v6.0.3
v6.0.4
v6.0.5

Ecosystem specific

{
    "severity": "MEDIUM"
}

Database specific

introduced_range
"4c8a3bd39c449eba1b07f81fd4177ad938a7fd93:69f8eb21fd1da5688523986cc911346c333806c2"
source
"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/assimp/OSV-2026-521.yaml"