CVE-2026-10233
Description
A security vulnerability has been detected in Assimp up to 6.0.4. Affected by this issue is the function HL1MDLLoader::read_sequence_infos of the file HL1MDLLoader.cpp of the component Half-Life 1 MDL Loader. The manipulation of the argument aiString leads to out-of-bounds read. The attack needs to be performed locally. The exploit has been disclosed publicly and may be used. The project tagged the reported issue as bug.
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Mitigation details
CVE-2026-10233 NameCVE-2026-10233 DescriptionA security vulnerability has been detected in Assimp up to 6.0.4. Affected by this issue is the function HL1MDLLoader::read_sequence_infos of the file HL1MDLLoader.cpp of the component Half-Life 1 MDL Loader. The manipulation of the argument aiString leads to out-of-bounds read. The attack needs to be performed locally. The exploit has been disclosedβ¦
CVE-2026-10233
| Name | CVE-2026-10233 |
| Description | A security vulnerability has been detected in Assimp up to 6.0.4. Affected by this issue is the function HL1MDLLoader::read_sequence_infos of the file HL1MDLLoader.cpp of the component Half-Life 1 MDL Loader. The manipulation of the argument aiString leads to out-of-bounds read. The attack needs to be performed locally. The exploit has been disclosed publicly and may be used. The project tagged the reported issue as bug. |
| Source | CVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
Vulnerable and fixed packages
The table below lists information on source packages.
| Source Package | Release | Version | Status |
|---|---|---|---|
| assimp (PTS) | bullseye | 5.0.1~ds0-2 | vulnerable |
| bookworm | 5.2.5~ds0-1 | vulnerable | |
| trixie | 5.4.3+ds-2 | vulnerable | |
| forky, sid | 6.0.5+ds-1 | vulnerable |
The information below is based on the following data on fixed versions.
| Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
|---|---|---|---|---|---|---|
| assimp | source | (unstable) | (unfixed) |
Notes
https://github.com/assimp/assimp/issues/6619
Apply commands
https://github.com/assimp/assimp/issues/6619OS impact
Debian Affected 5 releases
| Version | Status | Fixed in |
|---|---|---|
| trixie | Affected | β |
| sid | Affected | β |
| forky | Affected | β |
| bullseye | Affected | β |
| bookworm | Affected | β |
SUSE Affected 1 release
| Version | Status | Fixed in |
|---|---|---|
| β | Affected | β |
References
- https://github.com/assimp/assimp/
- https://github.com/assimp/assimp/issues/6619
- https://github.com/user-attachments/files/27228962/poc.zip
- https://vuldb.com/cve/CVE-2026-10233
- https://vuldb.com/submit/821196
- https://vuldb.com/vuln/367512
- https://vuldb.com/vuln/367512/cti
- https://www.suse.com/security/cve/CVE-2026-10233.html
- https://security-tracker.debian.org/tracker/CVE-2026-10233
CWEs
CWE-119 CWE-125
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.