oss-sec mailing list archives
Re: CVE-2010 Request -- blender: Insecure temporary file use by creating file string in undo save quit Blender kernel routine (re-occurrence of CVE-2008-1103)
From: Eitan Adler <lists () eitanadler com>
Date: Thu, 6 Sep 2012 18:46:55 -0400
On 6 September 2012 13:56, Kurt Seifried <kseifried () redhat com> wrote:
Upstream ticket: [1] https://projects.blender.org/tracker/index.php?func=detail&aid=22509&group_id=9&atid=498
Could you allocate a CVE-2010- identifier for this?Please use CVE-2012-4410 for this issue.
Why the 2012 CVE when the issue was reported in 2010? -- Eitan Adler
Current thread:
- CVE-2010 Request -- blender: Insecure temporary file use by creating file string in undo save quit Blender kernel routine (re-occurrence of CVE-2008-1103) Jan Lieskovsky (Sep 06)
- Re: CVE-2010 Request -- blender: Insecure temporary file use by creating file string in undo save quit Blender kernel routine (re-occurrence of CVE-2008-1103) Kurt Seifried (Sep 06)
- Re: CVE-2010 Request -- blender: Insecure temporary file use by creating file string in undo save quit Blender kernel routine (re-occurrence of CVE-2008-1103) Eitan Adler (Sep 06)
- Re: CVE-2010 Request -- blender: Insecure temporary file use by creating file string in undo save quit Blender kernel routine (re-occurrence of CVE-2008-1103) Kurt Seifried (Sep 06)
- Re: CVE-2010 Request -- blender: Insecure temporary file use by creating file string in undo save quit Blender kernel routine (re-occurrence of CVE-2008-1103) Kurt Seifried (Sep 07)
- Re: CVE-2010 Request -- blender: Insecure temporary file use by creating file string in undo save quit Blender kernel routine (re-occurrence of CVE-2008-1103) Eitan Adler (Sep 07)
- Re: CVE-2010 Request -- blender: Insecure temporary file use by creating file string in undo save quit Blender kernel routine (re-occurrence of CVE-2008-1103) Eitan Adler (Sep 06)
- Re: CVE-2010 Request -- blender: Insecure temporary file use by creating file string in undo save quit Blender kernel routine (re-occurrence of CVE-2008-1103) Kurt Seifried (Sep 06)