Name of the Vulnerable Software and Affected Versions Open Asset Import Library (aka assimp) versions 5.1.0 through 5.1.1

Description The issue is a heap-based buffer overflow in the m3d safestr function, which is called from m3d load and Assimp::M3DWrapper::M3DWrapper.

Recommendations For Open Asset Import Library (aka assimp) versions 5.1.0 through 5.1.1, consider avoiding the use of the m3d safestr function until a patch is available. As a temporary workaround, restrict the use of the m3d load and Assimp::M3DWrapper::M3DWrapper functions to minimize the risk of exploitation.