Package: blender
Severity: grave
Tags: security
Hi,
the following CVE (Common Vulnerabilities Exposures) id was
published for blender.
CVE-2008-1102[0]:
| Stack-based buffer overflow in the imb_loadhdr function in Blender
| 2.45 allows user-assisted remote attackers to execute arbitrary code
|
Hi!
Upstream patch:
svn diff -r14431:14461
https://svn.blender.org/svnroot/bf-blender/trunk/blender/source/blender/imbuf/intern/radiance_hdr.c
http://cvs.fedoraproject.org/viewcvs/rpms/blender/devel/blender-2.45-cve-2008-1102.patch
HTH
--
Tomas Hoger
--
To UNSUBSCRIBE, email to [EMAIL
tag 477808 pending
thanks
On 25/04/2008, Tomas Hoger wrote:
Hi!
Hi,
Upstream patch:
[…]
HTH
sure, many thanks!
Mraw,
KiBi.
pgpxSmlVBKHEA.pgp
Description: PGP signature
Processing commands for [EMAIL PROTECTED]:
tag 477808 pending
Bug#477808: blender: CVE-2008-1102 arbitrary code execution via crafted .blend
file
Tags were: patch security
Tags added: pending
thanks
Stopping processing here.
Please contact me if you need assistance.
Debian bug tracking
4 matches
Mail list logo