UBUNTU-CVE-2020-28589

An improper array index validation vulnerability exists in the LoadObj functionality of tinyobjloader v2.0-rc1 and tinyobjloader development commit 79d4421. A specially crafted file could lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...

Improper Validation of Array Index

Overview Affected versions of this package are vulnerable to Improper Validation of Array Index. An improper array index validation vulnerability exists in the LoadObj functionality of tinyobjloader v2.0-rc1 and tinyobjloader development commit 79d4421. A specially crafted file could lead to code...

CVE-2020-28589

An improper array index validation vulnerability exists in the LoadObj functionality of tinyobjloader v2.0-rc1 and tinyobjloader development commit 79d4421. A specially crafted file could lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...

CVE-2020-28589

CVE-2020-28589 affects tinyobjloader, specifically the LoadObj functionality in v2.0-rc1 and the development commit 79d4421. Affected component/function/file: LoadObj; root cause: improper array index validation. Impact per sources: could lead to code execution upon processing a specially crafted...

CVE-2020-28589

An improper array index validation vulnerability exists in the LoadObj functionality of tinyobjloader v2.0-rc1 and tinyobjloader development commit 79d4421. A specially crafted file could lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...

PT-2021-6503 · Unknown +1 · Tinyobjloader +1

Name of the Vulnerable Software and Affected Versions: tinyobjloader versions v2.0-rc1 through development commit 79d4421 Description: An improper array index validation issue exists in the LoadObj functionality, allowing a specially crafted file to potentially lead to code execution. An attacker...

Vulnerability Spotlight: Use-after-free vulnerability in tinyobjloader

Lilith of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw. Cisco Talos recently discovered that a specific function of tinyobjloader does not properly validate array indexes. An adversary could trick a user into opening a specially crafted file, causing an index... This is only the...

tinyobjloader LoadObj improper array index validation vulnerability

Summary An improper array index validation vulnerability exists in the LoadObj functionality of tinyobjloader v2.0-rc1 and tinyobjloader development commit 79d4421. A specially crafted file could lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. Teste...

tinyobjloader 输入验证错误漏洞

tinyobjloader is a software application. Small but powerful single-file wavefront obj loader written in C++03. An input validation error vulnerability exists in tinyobjloader, which stems from a use-after-release vulnerability in the tinyobjloader.h::LoadObj function in tinyobjloader version...