oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE-2010 Request -- blender: Insecure temporary file use by creating file string in undo save quit Blender kernel routine (re-occurrence of CVE-2008-1103)

From: Kurt Seifried <kseifried () redhat com>
Date: Thu, 06 Sep 2012 18:43:21 -0600
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 09/06/2012 04:46 PM, Eitan Adler wrote:

On 6 September 2012 13:56, Kurt Seifried <kseifried () redhat com>
wrote:

Upstream ticket: [1] 
https://projects.blender.org/tracker/index.php?func=detail&aid=22509&group_id=9&atid=498



 Could you allocate a CVE-2010- identifier for this?


Please use CVE-2012-4410 for this issue.


Why the 2012 CVE when the issue was reported in 2010?


Because sometimes I make mistakes and don't read so good =) Steven, is
this worth fixing?


- -- 
Kurt Seifried Red Hat Security Response Team (SRT)
PGP: 0x5E267993 A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://www.enigmail.net/
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=BUrI
-----END PGP SIGNATURE-----
Previous By Date Next
Previous By Thread Next

Current thread: