| शीर्षक | Assimp commit 17c12da NULL Pointer Dereference |
|---|
| विवरण | A NULL pointer dereference vulnerability exists in Assimp's glTFImporter component, specifically in the `Assimp::glTFImporter::ImportMeshes()` function at `glTFImporter.cpp:287`.
The root cause is that the program calls `ExtractData()` to load texture coordinate data from a glTF accessor, but fails to verify whether the function succeeds. When processing a malicious or malformed glTF file with an invalid bufferView, missing data, or corrupted texture coordinate structure, `ExtractData()` returns a failure status and leaves the output data pointer as NULL.
The code then directly dereferences this NULL pointer to access texture coordinate values, which triggers an immediate segmentation fault (SEGV) and crashes the application. This vulnerability can be exploited to cause a denial-of-service (DoS) condition. |
|---|
| स्रोत | ⚠️ https://github.com/assimp/assimp/issues/6609 |
|---|
| उपयोगकर्ता | TYGLS (UID 94774) |
|---|
| सबमिशन | 07/05/2026 04:32 AM (29 दिन पहले) |
|---|
| संयम | 31/05/2026 08:13 AM (24 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 367478 [Assimp तक 6.0.4 glTFImporter glTFImporter.cpp ImportMeshes सेवा अस्वीकार] |
|---|
| अंक | 20 |
|---|