Package "tinygltf"

Name:	tinygltf
Description:	This package is just an umbrella for a group of other packages, it has no description. Description samples from packages in group: glTF loader and saver library - header files glTF loader and saver library
Latest version:	2.5.0+dfsg-4ubuntu0.1
Release:	jammy (22.04)
Level:	security
Repository:	universe

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Other versions of "tinygltf" in Jammy

Repository	Area	Version
base	universe	2.5.0+dfsg-4
updates	universe	2.5.0+dfsg-4ubuntu0.1

Packages in group

Deleted packages are displayed in grey.

Changelog

Version: 2.5.0+dfsg-4ubuntu0.1 2024-11-26 15:06:51 UTC

tinygltf (2.5.0+dfsg-4ubuntu0.1) jammy-security; urgency=medium * SECURITY UPDATE: file path expansion function vulnerable to injection - debian/patches/CVE-2022-3008.patch: in tiny_gltf.h, disable the ExpandFilePath function that unsecurely made use of wordexp and was vulnerable to shell command injections. - CVE-2022-3008 -- Noam Nedelec-Salmon <email address hidden> Fri, 15 Nov 2024 15:05:47 +0100

CVE-2022-3008

The tinygltf library uses the C library function wordexp() to perform file path expansion on untrusted paths that are provided from the input file. T

About - Send Feedback to @ubuntu_updates

Package "tinygltf"

Links

Other versions of "tinygltf" in Jammy

Packages in group

Changelog

Share this page

Bookmarks

Latest updates

updates

proposed

security

PPA updates