Releases

frugalware-0.8 (Kalgan)
Mar 11, 2008

frugalware-0.7 (Sayshell)
Oct 13, 2007

frugalware-0.6 (Terminus)
Mar 22, 2007

frugalware-0.5 (Siwenna)
Sep 14, 2006

frugalware-0.4 (Wanda)
Mar 30, 2006

frugalware-0.3 (Trantor)
Oct 13, 2005

frugalware-0.2 (Aurora)
Apr 28, 2005

frugalware-0.1 (Genesis)
Nov 02, 2004

RSS

Donations

Donate to support our development efforts.

Recent updates
devel-core/
 pacman-tools
1.1.2-2solaria1-x86_64
devel-core/
 pacman-tools
1.1.2-2solaria1-i686
base/pacman-g2
3.7.2-2solaria1-x86_64
base/pacman-g2
3.7.2-2solaria1-i686
devel-extra/fwsetup
0.9.5-2solaria1-x86_64
devel-extra/fwsetup
0.9.5-2solaria1-i686
devel-extra/fwsetup
0.9.5-1-x86_64
devel-extra/fwsetup
0.9.5-1-i686
xapps/splashy
0.3.11-4-i686
xapps/splashy
0.3.11-4-i686

RSS
Languages
Change language | Change language | Change language | Change language | Change language | Change language | Change language
Information
Go Frugalware, Go
Valid XHTML 1.0!
Valid CSS!
Valid RSS!
Server information
Uptime:
10 day(s) 9 h 4 m 0 s
FSA474 - blender
Package:blender
Date:2008-06-13
Vulnerable version:2.45-1
Unaffected version:2.45-2kalgan1
Bug tracker entry:http://bugs.frugalware.org/task/3039
CVEs:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1102
Description:Secunia Research has discovered a vulnerability in Blender, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary error within the "imb_loadhdr()" function in source/blender/imbuf/intern/radiance_hdr.c, which can be exploited to cause a stack-based buffer overflow by e.g. tricking a user into opening a specially crafted Blender (*.blend) file containing a malicious Radiance RGBE image. Successful exploitation allows execution of arbitrary code.
© 2003-2008. The Frugalware Developer Team