PublicDate: 2008-04-22 04:41:00 UTC
Candidate: CVE-2008-1102
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1102
 https://ubuntu.com/security/notices/USN-699-1
Description:
 Stack-based buffer overflow in the imb_loadhdr function in Blender 2.45
 allows user-assisted remote attackers to execute arbitrary code via a
 .blend file that contains a crafted Radiance RGBE image.
Ubuntu-Description:
Notes:
Bugs:
 https://bugs.launchpad.net/bugs/222592
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_blender:
 vendor: http://www.debian.org/security/2008/dsa-1567
 vendor: http://patch-tracking.debian.net/patch/series/view/blender/2.42a-8/20_CVE-2008-1102_upstream
upstream_blender: released (2.45-5)
dapper_blender: released (2.41-1ubuntu4.1)
feisty_blender: needed (reached end-of-life)
gutsy_blender: released (2.44-2ubuntu2.1)
hardy_blender: released (2.45-4ubuntu1.1)
intrepid_blender: not-affected (2.46+dfsg-4)
devel_blender: not-affected (2.46+dfsg-6)