| 2008-05-06 14:29:36 |
Till Ulen |
bug |
|
|
added bug |
| 2008-05-06 14:34:42 |
Till Ulen |
description |
Binary package hint: blender
CVE-2008-1103 description:
'Multiple unspecified vulnerabilities in Blender have unknown impact and attack vectors, related to "temporary file issues." '
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1103
http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00011.html
I have no idea whether this is the same problem as that described in bug #6671. If you know that it is, please mark this bug as a duplicate of bug 6671. Until then this bug can serve a reminder that CVE-2008-1103 might be a separate set of problems that need fixing. |
Binary package hint: blender
CVE-2008-1103 description:
'Multiple unspecified vulnerabilities in Blender have unknown impact and attack vectors, related to "temporary file issues." '
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1103
http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00011.html
I have no idea whether this is the same problem as that described in bug #6671. If you know that it is, please mark this bug as a duplicate of bug 6671. Until then this bug can serve as a reminder that CVE-2008-1103 might be a separate set of problems that need fixing. |
|
| 2008-05-28 19:26:32 |
Daniel Hahler |
blender: status |
New |
Incomplete |
|
| 2008-05-28 19:26:32 |
Daniel Hahler |
blender: importance |
Undecided |
High |
|
| 2008-05-28 19:36:42 |
Daniel Hahler |
blender: status |
Incomplete |
Triaged |
|
| 2008-05-28 19:37:00 |
Daniel Hahler |
bug |
|
|
added subscriber MOTU SWAT |
| 2008-12-15 02:58:22 |
Hew |
blender: status |
New |
Won't Fix |
|
| 2008-12-15 02:58:22 |
Hew |
blender: statusexplanation |
|
Ubuntu Feisty Fawn is no longer supported, so a SRU will not be issued for this release. Marking Feisty as Won't Fix. |
|
| 2008-12-22 14:18:04 |
Marc Deslauriers |
blender: status |
New |
Invalid |
|
| 2008-12-22 14:18:04 |
Marc Deslauriers |
blender: statusexplanation |
|
|
|
| 2008-12-22 14:18:14 |
Marc Deslauriers |
blender: status |
New |
Invalid |
|
| 2008-12-22 14:18:14 |
Marc Deslauriers |
blender: statusexplanation |
|
|
|
| 2008-12-22 14:18:28 |
Marc Deslauriers |
blender: status |
New |
Invalid |
|
| 2008-12-22 14:18:28 |
Marc Deslauriers |
blender: statusexplanation |
|
|
|
| 2008-12-22 14:18:41 |
Marc Deslauriers |
blender: status |
Triaged |
Invalid |
|
| 2008-12-22 14:18:41 |
Marc Deslauriers |
blender: statusexplanation |
Sounds a bit like http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=298167, which appears to have been fixed in Debian in 2.45-2, so for Ubuntu since Hardy - while bug 6671 states it for Hardy.
Let's use this bug to track the CVE state, which is really vague - and/or I've not looked too much around for a patch. At least the 2.46 upstream changelog (html page) does not contain the word "security". |
|
|
