pkgsrc-Changes archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

CVS commit: [pkgsrc-2008Q1] pkgsrc/graphics/blender

Module Name:    pkgsrc
Committed By:   tron
Date:           Mon May 19 17:35:17 UTC 2008

Modified Files:
        pkgsrc/graphics/blender [pkgsrc-2008Q1]: Makefile distinfo
Added Files:
        pkgsrc/graphics/blender/patches [pkgsrc-2008Q1]: patch-ae patch-af

Log Message:
Pullup ticket 2386 - requested by tonnerre
security update for blender

Revisions pulled up:
- graphics/blender/Makefile             1.61
- graphics/blender/patches/patch-ae     1.7
- graphics/blender/distinfo             1.24
- graphics/blender/patches/patch-af     1.6
- graphics/blender/patches/patch-ag     1.6

    Module Name:        pkgsrc
    Committed By:       tonnerre
    Date:               Sat May 17 10:33:15 UTC 2008

    Modified Files:
        pkgsrc/graphics/blender: Makefile distinfo
    Added Files:
        pkgsrc/graphics/blender/patches: patch-ae patch-af patch-ag

    Log Message:
    Fix CVEs CVE-2008-1102 and CVE-2008-1102 for blender:
     - Fix arbitrary code execution vulnerability in .bend files which
    contain a crafted RGBE file (CVE-2008-1102).
     - Create various temporary files in safer paths (CVE-2008-1103).

To generate a diff of this commit:
cvs rdiff -r1.60 -r1.60.2.1 pkgsrc/graphics/blender/Makefile
cvs rdiff -r1.23 -r1.23.2.1 pkgsrc/graphics/blender/distinfo
cvs rdiff -r0 -r1.6.2.1 pkgsrc/graphics/blender/patches/patch-ae
cvs rdiff -r0 -r1.5.2.1 pkgsrc/graphics/blender/patches/patch-af \

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Home | Main Index | Thread Index | Old Index