Blender vulnerability

ID USN-238-2
Type ubuntu
Reporter Ubuntu
Modified 2006-01-06T00:00:00


Damian Put discovered that Blender did not properly validate a
'length' value in .blend files. Negative values led to an
insufficiently sized memory allocation. By tricking a user into
opening a specially crafted .blend file, this could be exploited to
execute arbitrary code with the privileges of the Blender user.