Ubuntu
blender package

blender 2.44-2ubuntu2.1 source package in Ubuntu

Changelog

blender (2.44-2ubuntu2.1) gutsy-security; urgency=low

  * SECURITY UPDATE: Stack-based buffer overflow in the imb_loadhdr
    function in Blender 2.45 allows user-assisted remote attackers
    to execute arbitrary code via a .blend file that contains a crafted
    Radiance RGBE image (LP: #222592)
    - 20_CVE-2008-1102.diff: Upstream patch to address stack overflow.
    - CVE-2008-1102
  * SECURITY UPDATE: Untrusted search path vulnerability in BPY_interface in
    Blender 2.46 allows local users to execute arbitrary code via a Trojan
    horse Python file in the current working directory, related to an
    erroneous setting of sys.path by the PySys_SetArgv function. (LP: #319501)
    - 01_sanitize_sys.path: Debian patch to no longer load modules from
      current dir. Slightly modified from Debian patch as per recommendation
      from debian patch author.
    - CVE-2008-4863

 -- Stefan Lesicnik <email address hidden>   Wed, 21 Jan 2009 10:34:10 +0200

Upload details

Uploaded by:
Stefan Lesicnik
Sponsored by:
Marc Deslauriers
Uploaded to:
Gutsy
Original maintainer:
Lukas Fittl
Architectures:
any
Section:
graphics
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
blender_2.44.orig.tar.gz 13.7 MiB 8fa5a46ea65d2a8b87fd1368d5984dfa0a41bdc3cfe24c776e069a4fe40102d1
blender_2.44-2ubuntu2.1.diff.gz 31.5 KiB d28eb62ae6c6dedc497bfd08a0f3bf74fcc52f70d24ad8487ea044150f838900
blender_2.44-2ubuntu2.1.dsc 1.2 KiB 64540d334fbb862677ce9e5e3036baf2f90ae6a642aaf9abbc201c1aca72a998

View changes file

Binary packages built by this source

blender: No summary available for blender in ubuntu gutsy.

No description available for blender in ubuntu gutsy.