Torque3D - Game Engine
Find a file
dkgkdfg65 fa8dd7decc Fix heap-buffer-overflow in vendored assimp Quick3D importer (CVE-2025-11277)
Engine/lib/assimp/code/AssetLib/Q3D/Q3DLoader.cpp:
Q3DImporter::InternReadFile reads attacker-controlled 32-bit texture
mWidth and mHeight, then computes `unsigned int mul = mWidth * mHeight`
and allocates `new aiTexel[mul]`. The pre-existing check only rejects
zero dimensions, so a crafted .q3o/.q3s file can make the product
overflow 32 bits and wrap to a small value, yielding an undersized
allocation. The subsequent fill loop bounded by
`end = &begin[mul - 1] + 1` then writes far past the buffer
(mul-1 underflows when mul wraps to 0), an out-of-bounds heap write.

Add the integer-overflow guard from upstream assimp (the fix that
closed assimp/assimp#6358 / CVE-2025-11277) verbatim: after the
zero check, reject dimensions whose product would overflow before
the multiplication, throwing DeadlyImportError instead.

Refs #1765
2026-06-10 01:25:46 +08:00
.github Update issue templates 2026-03-15 01:03:10 -05:00
Engine Fix heap-buffer-overflow in vendored assimp Quick3D importer (CVE-2025-11277) 2026-06-10 01:25:46 +08:00
My Projects changed readme 2014-03-19 02:20:35 +01:00
Templates fix advanced shader editor slider blocker 2026-06-03 19:24:02 -05:00
Tools update bullet so it actually works 2026-06-03 15:08:51 +01:00
.editorconfig Fix GitHub Workflow 2023-04-08 00:57:03 +02:00
.gitattributes Update gitattributes with some text files for avoid EOF problems with Git. 2014-12-06 01:18:41 +01:00
.gitignore Adds the D3DCompiler_47.dll to ensure it's packed and ready for projects when publishing 2023-11-23 12:46:55 -06:00
.travis.yml travis test whether compilation works on mac and linux 2019-01-10 12:39:27 +01:00
CMakeLists.txt make git installation optional 2025-12-20 12:25:06 -06:00
CODE_OF_CONDUCT.md Create CODE_OF_CONDUCT.md 2022-04-16 16:00:34 -05:00
CONTRIBUTING.md forgot to remove section 2020-06-13 09:20:14 -04:00
LICENSE.md Update LICENSE.md 2024-02-21 16:32:29 +00:00
README.md Fix docs link 2024-01-15 16:39:11 +01:00
vcpkg.json keep the root .json file for git_in_use 2025-12-20 13:39:59 -06:00

Torque3D

MIT Licensed Open Source version of Torque3D from GarageGames

GitHub tag GitHub release Github All Releases

Discord IRC

Build Status:

Windows Build

Linux Build

MacOSX Build

More Information

Extras: Torque3D Resources | Awesome Torque3D

Pre-compiled Version

In addition to GitHub we also have a couple of pre-packaged files for you to download if you would prefer to not compile the code yourself. They are available from the Torque3D Binaries repo.

License

All assets and code are under the license