Launchpad CVE tracker

CVE 2008-1102

Stack-based buffer overflow in the imb_loadhdr function in Blender 2.45 allows user-assisted remote attackers to execute arbitrary code via a .blend file that contains a crafted Radiance RGBE image.

Related bugs and status

CVE-2008-1102 (Candidate) is related to these bugs:

Bug #222592: [CVE-2008-1102] Blender imb_loadhdr() buffer overflow

		In	Importance	Status
222592	[CVE-2008-1102] Blender imb_loadhdr() buffer overflow	blender (Ubuntu)	Undecided	Invalid
222592	[CVE-2008-1102] Blender imb_loadhdr() buffer overflow	blender (Debian)	Unknown	Fix Released
222592	[CVE-2008-1102] Blender imb_loadhdr() buffer overflow	Gentoo Linux	Medium	Fix Released
222592	[CVE-2008-1102] Blender imb_loadhdr() buffer overflow	blender (Ubuntu Gutsy)	Undecided	Fix Released
222592	[CVE-2008-1102] Blender imb_loadhdr() buffer overflow	blender (Ubuntu Hardy)	Undecided	Fix Released
222592	[CVE-2008-1102] Blender imb_loadhdr() buffer overflow	blender (Ubuntu Dapper)	Undecided	Fix Released
222592	[CVE-2008-1102] Blender imb_loadhdr() buffer overflow	blender (Ubuntu Intrepid)	Undecided	Invalid
222592	[CVE-2008-1102] Blender imb_loadhdr() buffer overflow	blender (Ubuntu Jaunty)	Undecided	Invalid

Bug #319501: [CVE-2008-4863] - Untrusted search path vulnerability in BPY_interface in Blender 2.46 allows local users to execute arbitrary code

Summary				In	Importance	Status
	319501	[CVE-2008-4863] - Untrusted search path vulnerability in BPY_interface in Blender 2.46 allows local users to execute arbitrary code		blender (Ubuntu)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2008-1102

References