Launchpad has imported 18 comments from the remote bug at https://bugs.gentoo.org/show_bug.cgi?id=219008.
If you reply to an imported comment from within Launchpad, your comment will be sent to the remote bug automatically. Read more about Launchpad's inter-bugtracker facilities at https://help.launchpad.net/InterBugTracking. ------------------------------------------------------------------------ On 2008-04-23T11:22:16+00:00 lars wrote: Secunia Research has discovered a vulnerability in Blender, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary error within the "imb_loadhdr()" function in source/blender/imbuf/intern/radiance_hdr.c, which can be exploited to cause a stack-based buffer overflow by e.g. tricking a user into opening a specially crafted Blender (*.blend) file containing a malicious Radiance RGBE image. Successful exploitation allows execution of arbitrary code. The vulnerability is confirmed in version 2.45. Other versions may also be affected. Solution: Fixed in the SVN repository. Reply at: https://bugs.launchpad.net/ubuntu/+source/blender/+bug/222592/comments/0 ------------------------------------------------------------------------ On 2008-04-24T08:23:48+00:00 Thoger-redhat wrote: > Fixed in the SVN repository. Revisions 14432, 14451, 14461 Reply at: https://bugs.launchpad.net/ubuntu/+source/blender/+bug/222592/comments/1 ------------------------------------------------------------------------ On 2008-04-27T12:26:22+00:00 Maekke-gentoo wrote: I bumped blender in cvs with the following patch: http://cvs.fedora.redhat.com/viewcvs/rpms/blender/F-9/blender-2.45-cve-2008-1102.patch?sortby=date&view=markup The new revisions are: blender-2.45-r3: ~arch (masked for >=media-video/ffmpeg-0.4.9_p20080326) blender-2.45-r2 ~arch blender-2.43-r1 stable candidate Reply at: https://bugs.launchpad.net/ubuntu/+source/blender/+bug/222592/comments/3 ------------------------------------------------------------------------ On 2008-05-03T19:44:09+00:00 Rbu wrote: CVE-2008-1103 is public now too: Multiple unspecified vulnerabilities in Blender have unknown impact and attack vectors, related to "temporary file issues." I don't know what the situation is with a patch there. Markus, do you? Reply at: https://bugs.launchpad.net/ubuntu/+source/blender/+bug/222592/comments/4 ------------------------------------------------------------------------ On 2008-05-03T19:44:53+00:00 Rbu wrote: *** Bug 217694 has been marked as a duplicate of this bug. *** Reply at: https://bugs.launchpad.net/ubuntu/+source/blender/+bug/222592/comments/5 ------------------------------------------------------------------------ On 2008-05-07T21:10:02+00:00 Maekke-gentoo wrote: (In reply to comment #3) > CVE-2008-1103 is public now too: > Multiple unspecified vulnerabilities in Blender have unknown impact and attack > vectors, related to "temporary file issues." > > I don't know what the situation is with a patch there. Markus, do you? > grabbed patches fro CVE-2008-1103 from fedora: http://cvs.fedora.redhat.com/viewcvs/*checkout*/rpms/blender/F-9/blender-2.45-cve-2008-1103-1.patch?sortby=date http://cvs.fedora.redhat.com/viewcvs/*checkout*/rpms/blender/F-9/blender-2.45-cve-2008-1103-2.patch?sortby=date The new revisions are: media-gfx/blender-2.45-r4 ~arch media-gfx/blender-2.43-r2 stable candidate no new revision (but patches added) for p.masked version (media- gfx/blender-2.45-r3) Reply at: https://bugs.launchpad.net/ubuntu/+source/blender/+bug/222592/comments/10 ------------------------------------------------------------------------ On 2008-05-08T07:52:32+00:00 Rbu wrote: Arches, please test and mark stable: =media-gfx/blender-2.43-r2 Target keywords : "ppc ppc64 release x86" Reply at: https://bugs.launchpad.net/ubuntu/+source/blender/+bug/222592/comments/11 ------------------------------------------------------------------------ On 2008-05-08T14:47:58+00:00 Christian Faulhammer wrote: x86 stable Reply at: https://bugs.launchpad.net/ubuntu/+source/blender/+bug/222592/comments/12 ------------------------------------------------------------------------ On 2008-05-09T14:29:30+00:00 Corsair-5 wrote: ppc64 stable Reply at: https://bugs.launchpad.net/ubuntu/+source/blender/+bug/222592/comments/13 ------------------------------------------------------------------------ On 2008-05-11T12:09:38+00:00 Dertobi123 wrote: ppc stable Reply at: https://bugs.launchpad.net/ubuntu/+source/blender/+bug/222592/comments/14 ------------------------------------------------------------------------ On 2008-05-11T13:08:45+00:00 Maekke-gentoo wrote: 11 May 2008; Markus Meier <mae...@gentoo.org> -blender-2.43.ebuild: old Reply at: https://bugs.launchpad.net/ubuntu/+source/blender/+bug/222592/comments/15 ------------------------------------------------------------------------ On 2008-05-11T13:11:26+00:00 Py wrote: GLSA request filed. Reply at: https://bugs.launchpad.net/ubuntu/+source/blender/+bug/222592/comments/16 ------------------------------------------------------------------------ On 2008-05-11T18:20:39+00:00 pva wrote: Fixed in release snapshot. Reply at: https://bugs.launchpad.net/ubuntu/+source/blender/+bug/222592/comments/17 ------------------------------------------------------------------------ On 2008-05-12T21:18:00+00:00 Py wrote: GLSA 200805-12 Reply at: https://bugs.launchpad.net/ubuntu/+source/blender/+bug/222592/comments/18 ------------------------------------------------------------------------ On 2008-05-14T07:00:05+00:00 Thoger-redhat wrote: Please note that cve-2008-1103-1.patch and cve-2008-1103-2.patch in Fedora packages do not resolve CVE-2008-1103 completely, only /tmp/quit.blend part of the issue. See also: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2008-1103#c8 Reply at: https://bugs.launchpad.net/ubuntu/+source/blender/+bug/222592/comments/19 ------------------------------------------------------------------------ On 2008-05-14T18:30:57+00:00 Jaervosz wrote: Thanks for the info. Reopening for maintainer advise. Reply at: https://bugs.launchpad.net/ubuntu/+source/blender/+bug/222592/comments/20 ------------------------------------------------------------------------ On 2008-12-22T14:44:48+00:00 Samuli Suominen wrote: Hmm. Only blender-2.48a-r3 is left in tree.. if the CVE fixes ever went upstream, they should be in by now. Reply at: https://bugs.launchpad.net/ubuntu/+source/blender/+bug/222592/comments/22 ------------------------------------------------------------------------ On 2012-07-16T23:21:56+00:00 Ackle wrote: CVE-2008-1102: fixed in =media-gfx/blender-2.43-r2 / GLSA 200805-12 CVE-2008-1103: patch had an incomplete fix in =media-gfx/blender-2.43-r2 / GLSA 200805-12. First fixed was =media-gfx/blender-2.48a-r3 Reply at: https://bugs.launchpad.net/ubuntu/+source/blender/+bug/222592/comments/30 ** Changed in: gentoo Status: Confirmed => Unknown ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2008-1103 ** Bug watch added: Red Hat Bugzilla #CVE-2008-1103 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2008-1103 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/222592 Title: [CVE-2008-1102] Blender imb_loadhdr() buffer overflow To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/blender/+bug/222592/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs