tinyobjloader - Debian Package Tracker

A new upstream version is available: 2.0.0~rc9 high

A new upstream version 2.0.0~rc9 is available, you should consider packaging it.

Created: 2021-10-27 Last update: 2022-05-16 00:34

1 security issue in sid high

1 important issue:

CVE-2020-28589: An improper array index validation vulnerability exists in the LoadObj functionality of tinyobjloader v2.0-rc1 and tinyobjloader development commit 79d4421. A specially crafted file could lead to code execution. An attacker can provide a malicious file to trigger this vulnerability.

Created: 2021-08-15 Last update: 2021-12-05 06:30

1 security issue in bullseye high

There is 1 open security issue in bullseye.

1 important issue:

CVE-2020-28589: An improper array index validation vulnerability exists in the LoadObj functionality of tinyobjloader v2.0-rc1 and tinyobjloader development commit 79d4421. A specially crafted file could lead to code execution. An attacker can provide a malicious file to trigger this vulnerability.

Created: 2021-08-15 Last update: 2021-12-05 06:30

1 security issue in bookworm high

There is 1 open security issue in bookworm.

1 important issue:

CVE-2020-28589: An improper array index validation vulnerability exists in the LoadObj functionality of tinyobjloader v2.0-rc1 and tinyobjloader development commit 79d4421. A specially crafted file could lead to code execution. An attacker can provide a malicious file to trigger this vulnerability.

Created: 2021-08-15 Last update: 2021-12-05 06:30

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.6.1 instead of 4.6.0).

Created: 2022-05-11 Last update: 2022-05-11 23:24