[Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-28589/tinyobjloader

Fri, 09 Sep 2022 08:49:16 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
4262d9bd by Salvatore Bonaccorso at 2022-09-09T17:48:29+02:00
Update information on CVE-2020-28589/tinyobjloader

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -131599,9 +131599,11 @@ CVE-2020-28590 (An out-of-bounds read vulnerability 
exists in the Obj File Trian
        NOTE: https://github.com/slic3r/Slic3r/issues/5074
        NOTE: Crash in enduser application, no security impact
 CVE-2020-28589 (An improper array index validation vulnerability exists in the 
LoadObj ...)
+       [experimental] - tinyobjloader 2.0.0~rc9+dfsg-1
        - tinyobjloader <unfixed> (bug #1014776)
        [bullseye] - tinyobjloader <no-dsa> (Minor issue)
        NOTE: 
https://talosintelligence.com/vulnerability_reports/TALOS-2020-1212
+       NOTE: 
https://github.com/tinyobjloader/tinyobjloader/commit/7ba4b652ee0c5175ec8abf66199e84d88adf11f1
 (v2.0.0rc9)
 CVE-2020-28588 (An information disclosure vulnerability exists in the 
/proc/pid/syscal ...)
        - linux 5.9.15-1
        [buster] - linux <not-affected> (Vulnerable code not present)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4262d9bd7cf61c8ecfae238b7612605ef7fc9eff

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4262d9bd7cf61c8ecfae238b7612605ef7fc9eff
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to