Blender Git Loki

Git Commits -> Revision d30cc1e

Revision d30cc1e by Brecht Van Lommel (master)
January 17, 2018, 18:59 (GMT)
Fix buffer overflows in TIFF, PNG, IRIS, DPX, HDR and AVI loading.

Solves these security issues from T52924:
CVE-2017-2899
CVE-2017-2900
CVE-2017-2901
CVE-2017-2902
CVE-2017-2903
CVE-2017-2904
CVE-2017-2905
CVE-2017-2906
CVE-2017-2907
CVE-2017-2918

Differential Revision: https://developer.blender.org/D2999

Commit Details:

Full Hash: d30cc1ea0b9ba64d8a1e22105528b6cb8077692c
Parent Commit: a670036
Lines Changed: +349, -289

20 Modified Paths:

/source/blender/avi/CMakeLists.txt (+1, -0) (Diff)
/source/blender/avi/intern/avi.c (+23, -13) (Diff)
/source/blender/avi/intern/avi_codecs.c (+1, -1) (Diff)
/source/blender/avi/intern/avi_intern.h (+1, -1) (Diff)
/source/blender/avi/intern/avi_mjpeg.c (+51, -41) (Diff)
/source/blender/avi/intern/avi_mjpeg.h (+2, -2) (Diff)
/source/blender/avi/intern/avi_rgb.c (+47, -43) (Diff)
/source/blender/avi/intern/avi_rgb.h (+2, -2) (Diff)
/source/blender/avi/intern/avi_rgb32.c (+19, -13) (Diff)
/source/blender/avi/intern/avi_rgb32.h (+2, -2) (Diff)
/source/blender/imbuf/IMB_imbuf.h (+6, -0) (Diff)
/source/blender/imbuf/intern/allocimbuf.c (+20, -20) (Diff)
/source/blender/imbuf/intern/bmp.c (+17, -13) (Diff)
/source/blender/imbuf/intern/cineon/dpxlib.c (+2, -1) (Diff)
/source/blender/imbuf/intern/cineon/logImageCore.c (+47, -54) (Diff)
/source/blender/imbuf/intern/cineon/logImageCore.h (+1, -1) (Diff)
/source/blender/imbuf/intern/iris.c (+41, -24) (Diff)
/source/blender/imbuf/intern/png.c (+27, -27) (Diff)
/source/blender/imbuf/intern/radiance_hdr.c (+21, -23) (Diff)
/source/blender/imbuf/intern/tiff.c (+18, -8) (Diff)
Tehnyt: Miika HämäläinenViimeksi päivitetty: 07.11.2014 14:18MiikaH:n Sivut a.k.a. MiikaHweb | 2003-2021