Commit - rpms/blender - 48f083c7cc605b057c3ee3a6fe696614ab1bd4a7

rpms / blender

Overview Files Commits Branches Forks Releases

Monitoring status:

Bugzilla Assignee:

Fedora:: luya
EPEL:: slaanesh

`48f083c` Backport e6df028 (fix multiple CVEs)

Authored and Committed by music 2 years ago

raw patch tree parent

2 files changed. 295 lines added. 0 lines removed.

blender-2.68a-curve-font-particles.patch

    Backport e6df028 (fix multiple CVEs)
    
        Fix buffer overflow vulnerability in curve, font, particles code.
    
        Solves these security issues from T52924:
        CVE-2017-12102
        CVE-2017-12103
        CVE-2017-12104
    
        While the specific overflow issue may be fixed, loading the repro .blend
        files may still crash because they are incomplete and corrupt. The way
        they crash may be impossible to exploit, but this is difficult to prove.
    
        Differential Revision: https://developer.blender.org/D3002

Fedora CI - scratch build
success

Package tests for 48f083c7: passed
2 years ago
Build completed
success

Built as blender-1:2.68a-9.el7
2 years ago

blender-2.68a-curve-font-particles.patch

file added

+272

blender.spec

file modified

+23 -0

rpms / blender

Source Code

48f083c Backport e6df028 (fix multiple CVEs)

Authored and Committed by music 2 years ago

`48f083c` Backport e6df028 (fix multiple CVEs)