[BACK]Return to distinfo CVS log [TXT][DIR] Up to [cvs.NetBSD.org] / pkgsrc / graphics / blender

File: [cvs.NetBSD.org] / pkgsrc / graphics / blender / distinfo (download)

Revision, Mon Feb 13 11:06:05 2006 UTC (13 years, 11 months ago) by salo
Branch: pkgsrc-2005Q4
Changes since 1.18: +2 -1 lines

Pullup ticket #1124 - requested by Joerg Sonnenberger
security fix for blender

Revisions pulled up:
- pkgsrc/graphics/blender/Makefile		patch
- pkgsrc/graphics/blender/distinfo		patch
- pkgsrc/graphics/blender/patches/patch-aa	1.5

   Module Name:		pkgsrc
   Committed By:	joerg
   Date:		Sun Feb 12 21:52:19 UTC 2006

   Modified Files:
   	pkgsrc/graphics/blender: Makefile distinfo
   Added Files:
   	pkgsrc/graphics/blender/patches: patch-aa

   Log Message:
   Fix an Apple specific buffer overflow. To skip the first argument from
   Finder, some copying to and from a local buffer in main is done, without
   argument checking.

   When a web browser or MUA is configured to start Blender automatically,
   this might be exploitable to gain priviledges of the current user.

   This is related to CVE-2005-3151.

$NetBSD: distinfo,v 2006/02/13 11:06:05 salo Exp $

SHA1 (blender-2.37a.tar.gz) = 8070654abdca449658f8fb7c9ecfc4fb7e445465
RMD160 (blender-2.37a.tar.gz) = 77a78a9f5ead45b7d1f67837c30446afbe937889
Size (blender-2.37a.tar.gz) = 7990789 bytes
SHA1 (patch-aa) = 21dd95ff4ab51bb9b1084f28e4e080ca38421bce
SHA1 (patch-ab) = 3c8b57b1aac2aba141d8392ce8e9c7759febd68f
SHA1 (patch-ac) = dcfa14519404915a69bd626c8a5a6029d2535ca2
SHA1 (patch-ae) = 5bf3ac144f8934c517115a7633b86a47627cc922