Loading HuntDB...

GHSA-8f9r-9957-fj34

GitHub Security Advisory

⚠ Unreviewed MODERATE Has CVE

Advisory Details

An out-of-bounds memory corruption vulnerability exists in the way Pixar OpenUSD 20.05 uses SPECS data from binary USD files. A specially crafted malformed file can trigger an out-of-bounds memory access and modification which results in memory corruption. To trigger this vulnerability, the victim needs to access an attacker-provided malformed file.

Related CVEs

Key Information

GHSA ID
GHSA-8f9r-9957-fj34
Published
May 24, 2022 5:35 PM
Last Modified
May 24, 2022 5:35 PM
CVSS Score
5.0 /10
Primary Ecosystem
Unknown
Primary Package
Unknown
GitHub Reviewed
✗ No

Dataset

Last updated: August 2, 2025 6:46 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.