| Summary: | blender new security issues CVE-2022-054[4-6] | ||
|---|---|---|---|
| Product: | Mageia | Reporter: | David Walser <luigiwalser> |
| Component: | Security | Assignee: | All Packagers <pkg-bugs> |
| Status: | RESOLVED OLD | QA Contact: | Sec team <security> |
| Severity: | critical | ||
| Priority: | Normal | CC: | geiger.david68210, nicolas.salguero |
| Version: | 8 | ||
| Target Milestone: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| See Also: | https://bugs.mageia.org/show_bug.cgi?id=30366 | ||
| Whiteboard: | |||
| Source RPM: | blender-2.83.10-3.1.mga8.src.rpm | CVE: | |
| Status comment: | Patches available from Debian and Fedora | ||
|
Description
David Walser
2022-05-11 20:18:11 CEST
David Walser
2022-05-11 20:19:03 CEST
Status comment:
(none) =>
Patch available from Fedora Blender is nominally with daviddavid, but has been dealt with by other people for nearly a year, so assigning this globally. CC:
(none) =>
geiger.david68210 Debian-LTS has issued an advisory on June 28: https://www.debian.org/lts/security/2022/dla-3060 It fixes two new CVEs (fixed upstream in 2.83.19) and the one Fedora fixed (fixed upstream, but possibly not in the 2.83.x branch). Summary:
blender new security issue CVE-2022-0546 =>
blender new security issues CVE-2022-054[4-6] Debian has issued an advisory for this on July 4: https://www.debian.org/security/2022/dsa-5176 On cauldron we have the 3.3.6 release so it should be fixed!
David Walser
2023-06-27 14:10:45 CEST
Version:
Cauldron =>
8 Mageia 8 EOL CC:
(none) =>
nicolas.salguero |