Debian Blender vulnerabilities

CVE-2022-0545 [HIGH] CVE-2022-0545: blender - An integer overflow in the processing of loaded 2D images leads to a write-what-... An integer overflow in the processing of loaded 2D images leads to a write-what-where vulnerability and an out-of-bounds read vulnerability, allowing an attacker to leak sensitive information or achieve code execution in the context of the Blender process when a specially crafted image file is loaded. This flaw affects Blender versions prior to 2.83.19, 2.93.8 and 3.1

CVE-2022-0546 [HIGH] CVE-2022-0546: blender - A missing bounds check in the image loader used in Blender 3.x and 2.93.8 leads ... A missing bounds check in the image loader used in Blender 3.x and 2.93.8 leads to out-of-bounds heap access, allowing an attacker to cause denial of service, memory corruption or potentially code execution. Scope: local bookworm: resolved (fixed in 3.1.2+dfsg-1) bullseye: resolved (fixed in 2.83.5+dfsg-5+deb11u1) sid: resolved (fixed in 3.1.2+dfsg-1) trixie: resolved

CVE-2022-2831 [HIGH] CVE-2022-2831: blender - A flaw was found in Blender 3.3.0. An interger overflow in source/blender/blendt... A flaw was found in Blender 3.3.0. An interger overflow in source/blender/blendthumb/src/blendthumb_extract.cc may lead to program crash or memory corruption. Scope: local bookworm: resolved (fixed in 3.2.2+dfsg-1) bullseye: open sid: resolved (fixed in 3.2.2+dfsg-1) trixie: resolved (fixed in 3.2.2+dfsg-1)

CVE-2022-0544 [MEDIUM] CVE-2022-0544: blender - An integer underflow in the DDS loader of Blender leads to an out-of-bounds read... An integer underflow in the DDS loader of Blender leads to an out-of-bounds read, possibly allowing an attacker to read sensitive data using a crafted DDS image file. This flaw affects Blender versions prior to 2.83.19, 2.93.8 and 3.1. Scope: local bookworm: resolved (fixed in 3.1.2+dfsg-1) bullseye: resolved (fixed in 2.83.5+dfsg-5+deb11u1) sid: resolved (fixed in

CVE-2022-2833 [HIGH] CVE-2022-2833: blender - Endless Infinite loop in Blender-thumnailing due to logical bugs. Endless Infinite loop in Blender-thumnailing due to logical bugs. Scope: local bookworm: resolved (fixed in 3.2.2+dfsg-1) bullseye: open sid: resolved (fixed in 3.2.2+dfsg-1) trixie: resolved (fixed in 3.2.2+dfsg-1)

CVE-2022-2832 [HIGH] CVE-2022-2832: blender - A flaw was found in Blender 3.3.0. A null pointer dereference exists in source/b... A flaw was found in Blender 3.3.0. A null pointer dereference exists in source/blender/gpu/opengl/gl_backend.cc that may lead to loss of confidentiality and integrity. Scope: local bookworm: open bullseye: open sid: open trixie: open

CVE-2017-12081 [HIGH] CVE-2017-12081: blender - An exploitable integer overflow exists in the upgrade of a legacy Mesh attribute... An exploitable integer overflow exists in the upgrade of a legacy Mesh attribute of the Blender open-source 3d creation suite v2.78c. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An attacker can convince a user to open the file or use it as a libr

CVE-2017-2903 [HIGH] CVE-2017-2903: blender - An exploitable integer overflow exists in the DPX loading functionality of the B... An exploitable integer overflow exists in the DPX loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.cin' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An attacker can convince a user to use the file as an asset via the sequ

CVE-2017-2907 [HIGH] CVE-2017-2907: blender - An exploitable integer overflow exists in the animation playing functionality of... An exploitable integer overflow exists in the animation playing functionality of the Blender open-source 3d creation suite version 2.78c. A specially created '.avi' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An attacker can convince a user to use the file as an asset in ord

CVE-2017-2902 [HIGH] CVE-2017-2902: blender - An exploitable integer overflow exists in the DPX loading functionality of the B... An exploitable integer overflow exists in the DPX loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.cin' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An attacker can convince a user to use the file as an asset via the sequ

CVE-2017-2906 [HIGH] CVE-2017-2906: blender - An exploitable integer overflow exists in the animation playing functionality of... An exploitable integer overflow exists in the animation playing functionality of the Blender open-source 3d creation suite version 2.78c. A specially created '.avi' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An attacker can convince a user to use the file as an asset in ord

CVE-2017-2918 [HIGH] CVE-2017-2918: blender - An exploitable integer overflow exists in the Image loading functionality of the... An exploitable integer overflow exists in the Image loading functionality of the Blender open-source 3d creation suite v2.78c. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An attacker can convince a user to open the file or use it as a library in or

CVE-2017-2900 [HIGH] CVE-2017-2900: blender - An exploitable integer overflow exists in the PNG loading functionality of the B... An exploitable integer overflow exists in the PNG loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.png' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An attacker can convince a user to use the file as an asset via the sequ

CVE-2017-12103 [HIGH] CVE-2017-12103: blender - An exploitable integer overflow exists in the way that the Blender open-source 3... An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c converts text rendered as a font into a curve. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An attacker can convince a user to open the file or

CVE-2017-12105 [HIGH] CVE-2017-12105: blender - An exploitable integer overflow exists in the way that the Blender open-source 3... An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c applies a particular object modifier to a Mesh. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An attacker can convince a user to open the file o

CVE-2017-2901 [HIGH] CVE-2017-2901: blender - An exploitable integer overflow exists in the IRIS loading functionality of the ... An exploitable integer overflow exists in the IRIS loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.iris' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An attacker can convince a user to use the file as an asset via the se

CVE-2017-2905 [HIGH] CVE-2017-2905: blender - An exploitable integer overflow exists in the bmp loading functionality of the B... An exploitable integer overflow exists in the bmp loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.bmp' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An attacker can convince a user to use the file as an asset via the sequ

CVE-2017-2904 [HIGH] CVE-2017-2904: blender - An exploitable integer overflow exists in the RADIANCE loading functionality of ... An exploitable integer overflow exists in the RADIANCE loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.hdr' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An attacker can convince a user to use the file as an asset via the

CVE-2017-12100 [HIGH] CVE-2017-12100: blender - An exploitable integer overflow exists in the 'multires_load_old_dm' functionali... An exploitable integer overflow exists in the 'multires_load_old_dm' functionality of the Blender open-source 3d creation suite v2.78c. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An attacker can convince a user to open a .blend file in order to

CVE-2017-12102 [HIGH] CVE-2017-12102: blender - An exploitable integer overflow exists in the way that the Blender open-source 3... An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c converts curves to polygons. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application. An attacker can convince a user to open the file or use the file as a