[Bf-committers] [Patch]Solving security issues CVE-2008-1103 (partialy) and CVE-2008-4083
theeth at yahoo.com
Wed Jan 20 18:09:37 CET 2010
Thanks for the patches, but no more changes are going into 2.49 at this point (no more releases of the version are planned).
If the issues are also present in the 2.5 line (now trunk), you are invited to submit patches against that.
The quit.blend file in .blender would good for sure, IMHO.
--- On Wed, 1/20/10, Jochen Schmitt <Jochen at herr-schmitt.de> wrote:
> From: Jochen Schmitt <Jochen at herr-schmitt.de>
> Subject: [Bf-committers] [Patch]Solving security issues CVE-2008-1103 (partialy) and CVE-2008-4083
> To: "bf-blender developers" <bf-committers at blender.org>
> Received: Wednesday, January 20, 2010, 10:39 AM
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> regarding to the following bug reports
> I have created a patch, which I have attachted to this
> The most user visible effect of this patch ist the changing
> of the
> where the quid.blend file be be stored.
> In the past this file was stored in the /tmp directory
> which is a bad
> choice for a mulituser OS. Now this file will be stored at
> so that each user has it own version of this file.
> Best Regards:
> Jochen Schmitt
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.10 (GNU/Linux)
> Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
> -----END PGP SIGNATURE-----
> -----Inline Attachment Follows-----
> Bf-committers mailing list
> Bf-committers at blender.org
Yahoo! Canada Toolbar: Search from anywhere on the web, and bookmark your favourite sites. Download it now
More information about the Bf-committers