it-securitynotifies AT lists.piratenpartei.de
Betreff: Sicherheitsankündigungen
Listenarchiv
- From: Moritz Muehlenhoff <jmm AT debian.org>
- To: debian-security-announce AT lists.debian.org
- Subject: [IT-SecNots] [SECURITY] [DSA 5176-1] blender security update
- Date: Mon, 4 Jul 2022 19:06:10 +0000
- Authentication-results: mail.piratenpartei.de; dkim=none; dmarc=none; spf=none (mail.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 2001:41b8:202:deb:216:36ff:fe40:4002) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"
- List-archive: https://lists.debian.org/msgid-search/20220704190610.GB14861 AT seger.debian.org
- List-id: <debian-security-announce.lists.debian.org>
- List-url: <http://lists.debian.org/debian-security-announce/>
- Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From: Date:Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=e+r5Y64peo6AQPAP454P59IkgVT8YSIe8vBk5J6hWko=; b=bK 9hHW+iIg1N+FJ6oixayFR1kg5xghzKKgUXpxaN7JMQhXDC9tHOvST2DTADmz4ylx0wc2ClhUjeI34 xOZNF21Rc0rktI8BYbN8l3PcfDdPCTbX9Yf2AjdzaS9bpN3yif7qdJbqi4pLlYPdfb9tul63WcRhG TwGdKGBRaR52/tFr/lRpIN+a0CnjrvzwZL+8UNp48mY6dkubgviHqaTsyYtnT/fs+bSPSL2mLuVp/ 17gG7bdOGdHIbRbZh8R5R10gFV4MxHYClJyC/yo5FWu3vTCCsuNuNR2Aivjt6pkuGk8rHZ/tL+RqS hABF1k1IRjgOES68TZFD4j+ObDo0aWtQ==;
- Old-return-path: <jmm AT seger.debian.org>
- Priority: urgent
- Resent-date: Mon, 4 Jul 2022 19:06:30 +0000 (UTC)
- Resent-from: debian-security-announce AT lists.debian.org
- Resent-message-id: <dtqtQOs6IiJ.A.FXF.2ozwiB@bendel>
- Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- -------------------------------------------------------------------------
Debian Security Advisory DSA-5176-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
July 04, 2022 https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : blender
CVE ID : CVE-2022-0544 CVE-2022-0545 CVE-2022-0546
Multiple vulnerabilities have been discovered in various image parsers in
Blender, a 3D modeller/ renderer, which may result in denial of service
of the execution of arbitrary code if a malformed file is opened.
For the oldstable distribution (buster), these problems have been fixed
in version 2.79.b+dfsg0-7+deb10u1.
For the stable distribution (bullseye), these problems have been fixed in
version 2.83.5+dfsg-5+deb11u1.
We recommend that you upgrade your blender packages.
For the detailed security status of blender please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/blender
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmLDOLoACgkQEMKTtsN8
TjZKpxAAlbJc9ntBoEe1fcxqfEfyVyF7ypbCsf+75uBtuGarBORx16P5cunX1fq6
fvIsRaPsaqjKPBRbPFwaWuMtLrtg28vXDvU/X3hil9xzXwlvD1Ljhd6aSLcpTN3s
+kHxaTMbm0FJs9Akvol3rGm+3LF7eMDipGZ6BfE7tkcjO+ABNMQzHnVuytCf0p1l
pGJJUCCWk23esBMnJpr7ba8pT1GJrSCPxYaNKozwDgA/AwSNPj2eHDh+W3if9ke8
ygo2U+3QrF5NYL4MQhPmqIEYBGCRTE9FT89jTXU8HItAKubvEAZAdXO147nuPgVf
Fia7Frpb3loB6UJJHWBRVYh781VnqeQZdAW7iGISZQVHKBMJ29n0gp5lDh6Uxtlx
thtxglj9bjjpySvvj7F1iC+R50Inmee9PsJbkf+bjv/prTEc6C+V9ZoAzQyQHr4N
dmFCwe5OrCM5EZybH/pj+6HXA/v7XmTshpQv/a1erUVYiRYTO1T9hsSJDvROcI9F
rPYR+3OaYRkBB68hYSFIGR5dw3EO81Te96jJkruQUKBSgIz2SM5nQn1BXjJ6NKJu
6IzeEgo+tVeIxD0dvmVE9AcQC5O/BPrIFe+5eaohGdA2uJN0wC3U5YrCYE8J0/OK
0HqEePKuQvLJW3yKwQxpTCtAPyoTfBn7rySE0NctgYsXy1JkELs=
=0ETO
-----END PGP SIGNATURE-----
- [IT-SecNots] [SECURITY] [DSA 5176-1] blender security update, Moritz Muehlenhoff, 04.07.2022
Archiv bereitgestellt durch MHonArc 2.6.24.