[Bf-committers] [Patch]Solving security issues CVE-2008-1103 (partialy) and CVE-2008-4083
Campbell Barton
ideasman42 at gmail.com
Wed Jan 20 20:11:01 CET 2010
In python3.x this returns a filter object rather then a list
eg.
>>> filter(None, sys.path)
<filter object at 0x4ca4eb0>
Can write this differently in the bpy __init__.py file
On Wed, Jan 20, 2010 at 8:00 PM, Jochen Schmitt <Jochen at herr-schmitt.de> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Am 20.01.2010 18:09, schrieb Martin Poirier:
>> Hi,
>>
>> Thanks for the patches, but no more changes are going into 2.49 at
>> this point (no more releases of the version are planned).
>>
>> If the issues are also present in the 2.5 line (now trunk), you are
>> invited to submit patches against that.
>>
>> The quit.blend file in .blender would good for sure, IMHO.
>
> The second patch was a solution von CVE-2008-4863. Detailed
> information you may find at
>
> http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4863
>
> Unfortunately, there was a lot of work on the file on which this
> patch will be applied. So it may be nice, if you can doublecheck
> this patch.
>
> Best Regards:
>
> Jochen Schmitt
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.10 (GNU/Linux)
> Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
>
> iJwEAQECAAYFAktXUtYACgkQZLAIBz9lVu/f3QP+I2yDa9R1TrMK/bIje5S8IE2W
> LTZGb1tKMmVLjtMA5Z/O+hD40nkuIf+8hOK/LP/+bui0GkR+DSr+WmepJyjlqT7j
> Efewvp21tzfOLdsPH6hEl3w1LiJz08Ye7QlTvpjSPHR15G2WwaXh81YFAbSUPb6O
> 7RiQtiB/S+5cbOWgDIo=
> =Vsn3
> -----END PGP SIGNATURE-----
>
>
> _______________________________________________
> Bf-committers mailing list
> Bf-committers at blender.org
> http://lists.blender.org/mailman/listinfo/bf-committers
>
>
--
- Campbell
More information about the Bf-committers
mailing list