August 2022 - Design Suite - Fedora Mailing-Lists

[Bug 2118559] New: CVE-2022-2833 blender: Eternal loop in blender thumbnail extractor

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2118559 Bug ID: 2118559 Summary: CVE-2022-2833 blender: Eternal loop in blender thumbnail extractor Product: Security Response Hardware: All OS: Linux Status: NEW Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team(a)redhat.com Reporter: saroy(a)redhat.com CC: code(a)musicinmybrain.net, design-devel(a)lists.fedoraproject.org, kwizart(a)gmail.com, luya_tfz(a)thefinalzone.net, negativo17(a)gmail.com, promac(a)gmail.com Target Milestone: --- Classification: Other source/blender/blendthumb/src/blendthumb_extract.cc https://developer.blender.org/rB24a2b5cb1292f769dd86e314471443976d5e9512 DDOS https://developer.blender.org/T99711 -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2118559

10 months, 4 weeks

1
6
0 / 0

[Bug 2118560] New: CVE-2022-2833 blender: Eternal loop in blender thumbnail extractor [fedora-all]

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2118560 Bug ID: 2118560 Summary: CVE-2022-2833 blender: Eternal loop in blender thumbnail extractor [fedora-all] Product: Fedora Version: 36 Status: NEW Component: blender Keywords: Security, SecurityTracking Severity: medium Priority: medium Assignee: luya_tfz(a)thefinalzone.net Reporter: saroy(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: code(a)musicinmybrain.net, design-devel(a)lists.fedoraproject.org, kwizart(a)gmail.com, luya_tfz(a)thefinalzone.net, negativo17(a)gmail.com, promac(a)gmail.com Target Milestone: --- Classification: Fedora This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in affected versions of fedora-all. For comments that are specific to the vulnerability please use bugs filed against the "Security Response" product referenced in the "Blocks" field. For more information see: http://fedoraproject.org/wiki/Security/TrackingBugs When submitting as an update, use the fedpkg template provided in the next comment(s). This will include the bug IDs of this tracking bug as well as the relevant top-level CVE bugs. Please also mention the CVE IDs being fixed in the RPM changelog and the fedpkg commit message. NOTE: this issue affects multiple supported versions of Fedora. While only one tracking bug has been filed, please correct all affected versions at the same time. If you need to fix the versions independent of each other, you may clone this bug as appropriate. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2118560

10 months, 4 weeks

1
4
0 / 0

[Bug 2118556] New: CVE-2022-2832 blender: Null pointer reference in blender thumbnail extractor

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2118556 Bug ID: 2118556 Summary: CVE-2022-2832 blender: Null pointer reference in blender thumbnail extractor Product: Security Response Hardware: All OS: Linux Status: NEW Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team(a)redhat.com Reporter: saroy(a)redhat.com CC: code(a)musicinmybrain.net, design-devel(a)lists.fedoraproject.org, kwizart(a)gmail.com, luya_tfz(a)thefinalzone.net, negativo17(a)gmail.com, promac(a)gmail.com Target Milestone: --- Classification: Other source/blender/gpu/opengl/gl_backend.cc Null pointer reference https://developer.blender.org/T99706 https://developer.blender.org/D15463 https://developer.blender.org/rB00dc7477022acdd969e4d709a235c0be819efa6c -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2118556

10 months, 4 weeks

1
8
0 / 0

[Bug 2118557] New: CVE-2022-2832 blender: Null pointer reference in blender thumbnail extractor [fedora-all]

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2118557 Bug ID: 2118557 Summary: CVE-2022-2832 blender: Null pointer reference in blender thumbnail extractor [fedora-all] Product: Fedora Version: 36 Status: NEW Component: blender Keywords: Security, SecurityTracking Severity: medium Priority: medium Assignee: luya_tfz(a)thefinalzone.net Reporter: saroy(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: code(a)musicinmybrain.net, design-devel(a)lists.fedoraproject.org, kwizart(a)gmail.com, luya_tfz(a)thefinalzone.net, negativo17(a)gmail.com, promac(a)gmail.com Target Milestone: --- Classification: Fedora This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in affected versions of fedora-all. For comments that are specific to the vulnerability please use bugs filed against the "Security Response" product referenced in the "Blocks" field. For more information see: http://fedoraproject.org/wiki/Security/TrackingBugs When submitting as an update, use the fedpkg template provided in the next comment(s). This will include the bug IDs of this tracking bug as well as the relevant top-level CVE bugs. Please also mention the CVE IDs being fixed in the RPM changelog and the fedpkg commit message. NOTE: this issue affects multiple supported versions of Fedora. While only one tracking bug has been filed, please correct all affected versions at the same time. If you need to fix the versions independent of each other, you may clone this bug as appropriate. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2118557

10 months, 4 weeks

1
4
0 / 0

[Bug 2118553] New: CVE-2022-2831 blender: Integer Overflow in blender thumbnail extractor

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2118553 Bug ID: 2118553 Summary: CVE-2022-2831 blender: Integer Overflow in blender thumbnail extractor Product: Security Response Hardware: All OS: Linux Status: NEW Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team(a)redhat.com Reporter: saroy(a)redhat.com CC: code(a)musicinmybrain.net, design-devel(a)lists.fedoraproject.org, kwizart(a)gmail.com, luya_tfz(a)thefinalzone.net, negativo17(a)gmail.com, promac(a)gmail.com Target Milestone: --- Classification: Other source/blender/blendthumb/src/blendthumb_extract.cc Integer Overflow can lead to Buffer overflow https://developer.blender.org/T99705 https://developer.blender.org/rB32df09b2416a6961704eca0fe73534c8c4e715b2 https://developer.blender.org/rBb1329d7eaa52a11c73b75d19d20bd8f6d11ac535 -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2118553

10 months, 4 weeks

1
6
0 / 0

[Bug 2118554] New: CVE-2022-2831 blender: Integer Overflow in blender thumbnail extractor [fedora-all]

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2118554 Bug ID: 2118554 Summary: CVE-2022-2831 blender: Integer Overflow in blender thumbnail extractor [fedora-all] Product: Fedora Version: 36 Status: NEW Component: blender Keywords: Security, SecurityTracking Severity: medium Priority: medium Assignee: luya_tfz(a)thefinalzone.net Reporter: saroy(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: code(a)musicinmybrain.net, design-devel(a)lists.fedoraproject.org, kwizart(a)gmail.com, luya_tfz(a)thefinalzone.net, negativo17(a)gmail.com, promac(a)gmail.com Target Milestone: --- Classification: Fedora This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in affected versions of fedora-all. For comments that are specific to the vulnerability please use bugs filed against the "Security Response" product referenced in the "Blocks" field. For more information see: http://fedoraproject.org/wiki/Security/TrackingBugs When submitting as an update, use the fedpkg template provided in the next comment(s). This will include the bug IDs of this tracking bug as well as the relevant top-level CVE bugs. Please also mention the CVE IDs being fixed in the RPM changelog and the fedpkg commit message. NOTE: this issue affects multiple supported versions of Fedora. While only one tracking bug has been filed, please correct all affected versions at the same time. If you need to fix the versions independent of each other, you may clone this bug as appropriate. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2118554

10 months, 4 weeks

1
4
0 / 0

[Bug 2045434] New: gimp-dbp: FTBFS in Fedora rawhide/f36

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2045434 Bug ID: 2045434 Summary: gimp-dbp: FTBFS in Fedora rawhide/f36 Product: Fedora Version: rawhide Status: NEW Component: gimp-dbp Assignee: luya_tfz(a)thefinalzone.net Reporter: releng(a)fedoraproject.org QA Contact: extras-qa(a)fedoraproject.org CC: design-devel(a)lists.fedoraproject.org, luya_tfz(a)thefinalzone.net Blocks: 1992484 (F36FTBFS) Target Milestone: --- Classification: Fedora gimp-dbp failed to build from source in Fedora rawhide/f36 https://koji.fedoraproject.org/koji/taskinfo?taskID=81775875 For details on the mass rebuild see: https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild Please fix gimp-dbp at your earliest convenience and set the bug's status to ASSIGNED when you start fixing it. If the bug remains in NEW state for 8 weeks, gimp-dbp will be orphaned. Before branching of Fedora 37, gimp-dbp will be retired, if it still fails to build. For more details on the FTBFS policy, please visit: https://docs.fedoraproject.org/en-US/fesco/Fails_to_build_from_source_Fai... Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1992484 [Bug 1992484] Fedora 36 FTBFS Tracker -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2045434

10 months, 4 weeks

1
5
0 / 0

[Bug 2095134] New: Package request for EPE9 - blender

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2095134 Bug ID: 2095134 Summary: Package request for EPE9 - blender Product: Fedora EPEL Version: epel9 Hardware: All OS: Linux Status: NEW Component: blender Severity: medium Assignee: negativo17(a)gmail.com Reporter: panos.asproulis(a)gmail.com QA Contact: extras-qa(a)fedoraproject.org CC: code(a)musicinmybrain.net, design-devel(a)lists.fedoraproject.org, kwizart(a)gmail.com, luya_tfz(a)thefinalzone.net, negativo17(a)gmail.com, promac(a)gmail.com Target Milestone: --- Classification: Fedora Please, branch and build package blender for EPEL9. -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2095134

1 year, 2 months

1
12
0 / 0

[Bug 2068278] New: [abrt] blender: _iris_batch_flush(): blender killed by SIGABRT

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2068278 Bug ID: 2068278 Summary: [abrt] blender: _iris_batch_flush(): blender killed by SIGABRT Product: Fedora Version: 35 Hardware: x86_64 Status: NEW Whiteboard: abrt_hash:20f8491da8feaadade3a23b6eef736a158ed599a;VAR IANT_ID=workstation; Component: blender Assignee: luya_tfz(a)thefinalzone.net Reporter: hontonoroger+redhat(a)gmail.com QA Contact: extras-qa(a)fedoraproject.org CC: design-devel(a)lists.fedoraproject.org, kwizart(a)gmail.com, luya_tfz(a)thefinalzone.net, negativo17(a)gmail.com, promac(a)gmail.com Target Milestone: --- Classification: Fedora Version-Release number of selected component: blender-1:3.1.0-7.fc35 Additional info: reporter: libreport-2.15.2 backtrace_rating: 3 cgroup: 0::/user.slice/user-1000.slice/user@1000.service/app.slice/app-gnome-blender-3494.scope cmdline: blender crash_function: _iris_batch_flush dso_list: /usr/bin/blender blender-1:3.1.0-7.fc35.x86_64 (Fedora Project) 1647978666 executable: /usr/bin/blender journald_cursor: s=09c17e512b614817b7d0f2c3f6b6b7a5;i=d2dff;b=abf58553e3b44bbeb0367ceb6eb0b74c;m=3af4d72e;t=5dae4ddffdf7f;x=5402c295caa599e kernel: 5.15.6-200.fc35.x86_64 rootdir: / runlevel: N 5 type: CCpp uid: 1000 -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2068278

1 year, 4 months

1
4
0 / 0

[Bug 2031495] New: Blender not working properly with wayland with nvidia

by bugzilla＠redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=2031495 Bug ID: 2031495 Summary: Blender not working properly with wayland with nvidia Product: Fedora Version: 35 Hardware: x86_64 OS: Linux Status: NEW Component: blender Severity: medium Assignee: luya_tfz(a)thefinalzone.net Reporter: paul.woegerer(a)gmail.com QA Contact: extras-qa(a)fedoraproject.org CC: design-devel(a)lists.fedoraproject.org, kwizart(a)gmail.com, luya_tfz(a)thefinalzone.net, negativo17(a)gmail.com, promac(a)gmail.com Target Milestone: --- Classification: Fedora Description of problem: When running Blender on Fedora 35 with Wayland with nvidia drivers from RPM Fusion the dropdown windows are not showing up reliably. This makes Blender unusable. Switching back to X11 fixes the problem and Blender works as expected. To be able to have Wayland with NVIDIA drivers enabled per default for Fedora 36 this needs to be fixed. Name : blender Epoch : 1 Version : 3.0.0 Release : 2.fc35 Architecture : x86_64 -- You are receiving this mail because: You are on the CC list for the bug. https://bugzilla.redhat.com/show_bug.cgi?id=2031495

1 year, 4 months

1
7
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

Design Suite August 2022