Blender Git Commit Log

Git Commits -> Revision 0dfcf7b

Revision 0dfcf7b by Brecht Van Lommel
January 17, 2018, 19:40 (GMT)
Fix buffer overflows in TIFF, PNG, IRIS, DPX, HDR and AVI loading.

Solves these security issues from T52924:
CVE-2017-2899
CVE-2017-2900
CVE-2017-2901
CVE-2017-2902
CVE-2017-2903
CVE-2017-2904
CVE-2017-2905
CVE-2017-2906
CVE-2017-2907
CVE-2017-2918

Differential Revision: https://developer.blender.org/D2999

Commit Details:

Full Hash: 0dfcf7b0d2fe4ad164f94aae052c25005601f131
Parent Commit: d5a2921
Lines Changed: +349, -289

20 Modified Paths:

/source/blender/avi/CMakeLists.txt (+1, -0) (Diff)
/source/blender/avi/intern/avi.c (+23, -13) (Diff)
/source/blender/avi/intern/avi_codecs.c (+1, -1) (Diff)
/source/blender/avi/intern/avi_intern.h (+1, -1) (Diff)
/source/blender/avi/intern/avi_mjpeg.c (+51, -41) (Diff)
/source/blender/avi/intern/avi_mjpeg.h (+2, -2) (Diff)
/source/blender/avi/intern/avi_rgb.c (+47, -43) (Diff)
/source/blender/avi/intern/avi_rgb.h (+2, -2) (Diff)
/source/blender/avi/intern/avi_rgb32.c (+19, -13) (Diff)
/source/blender/avi/intern/avi_rgb32.h (+2, -2) (Diff)
/source/blender/imbuf/IMB_imbuf.h (+6, -0) (Diff)
/source/blender/imbuf/intern/allocimbuf.c (+20, -20) (Diff)
/source/blender/imbuf/intern/bmp.c (+17, -13) (Diff)
/source/blender/imbuf/intern/cineon/dpxlib.c (+2, -1) (Diff)
/source/blender/imbuf/intern/cineon/logImageCore.c (+47, -54) (Diff)
/source/blender/imbuf/intern/cineon/logImageCore.h (+1, -1) (Diff)
/source/blender/imbuf/intern/iris.c (+41, -24) (Diff)
/source/blender/imbuf/intern/png.c (+27, -27) (Diff)
/source/blender/imbuf/intern/radiance_hdr.c (+21, -23) (Diff)
/source/blender/imbuf/intern/tiff.c (+18, -8) (Diff)
By: Miika HämäläinenLast update: Nov-07-2014 14:18MiikaHweb | 2003-2021