rpms/blender/F-9 blender-2.45-cve-2008-1102.patch, NONE, 1.1 blender.spec, 1.73, 1.74
Jochen Schmitt (s4504kr)
fedora-extras-commits at redhat.com
Thu Apr 24 14:43:34 UTC 2008
Author: s4504kr
Update of /cvs/extras/rpms/blender/F-9
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv19098
Modified Files:
blender.spec
Added Files:
blender-2.45-cve-2008-1102.patch
Log Message:
Added forgotten file
blender-2.45-cve-2008-1102.patch:
--- NEW FILE blender-2.45-cve-2008-1102.patch ---
diff -up blender-2.45/source/blender/imbuf/intern/radiance_hdr.c.csv blender-2.45/source/blender/imbuf/intern/radiance_hdr.c
--- blender-2.45/source/blender/imbuf/intern/radiance_hdr.c.csv 2008-04-24 16:22:36.000000000 +0200
+++ blender-2.45/source/blender/imbuf/intern/radiance_hdr.c 2008-04-24 16:25:59.000000000 +0200
@@ -191,7 +191,8 @@ struct ImBuf *imb_loadhdr(unsigned char
}
}
if (found) {
- sscanf((char*)&mem[x+1], "%s %d %s %d", (char*)&oriY, &height, (char*)&oriX, &width);
+ if (sscanf((char *)&mem[x+1], "%79s %d %79s %d", (char*)&oriY, &height,
+ (char*)&oriX, &width) != 4) return NULL;
/* find end of this line, data right behind it */
ptr = (unsigned char *)strchr((char*)&mem[x+1], '\n');
Index: blender.spec
===================================================================
RCS file: /cvs/extras/rpms/blender/F-9/blender.spec,v
retrieving revision 1.73
retrieving revision 1.74
diff -u -r1.73 -r1.74
--- blender.spec 24 Apr 2008 14:40:09 -0000 1.73
+++ blender.spec 24 Apr 2008 14:42:58 -0000 1.74
@@ -3,7 +3,7 @@
Name: blender
Version: 2.45
-Release: 11%{?dist}.1
+Release: 11%{?dist}.2
Summary: 3D modeling, animation, rendering and post-production
@@ -187,7 +187,7 @@
%{_datadir}/mime/packages/blender.xml
%changelog
-* Thu Apr 24 2008 Jochen Schmitt <Jochen herr-schmitt de> 2.45-11.1
+* Thu Apr 24 2008 Jochen Schmitt <Jochen herr-schmitt de> 2.45-11.2
- Fix CVS-2008-1102 (#443937)
* Wed Mar 12 2008 Jochen Schmitt <Jochen herr-schmitt de> 2.45-10
More information about the fedora-extras-commits
mailing list