From Mageia wiki
MGASA-2012-0319
| Date: | October 30th, 2012 |
| Affected releases: | 1 |
Description:
Updated blender package fixes security vulnerability:
Blender 2.34, 2.35a, 2.40, and 2.49b allows remote attackers to execute
arbitrary code via a .blend file that contains Python statements in the
onLoad action of a ScriptLink SDNA (CVE-2009-3850).
Updated Packages:
blender-2.49b-11.4.mga1
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3850
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062616.html
https://bugs.mageia.org/show_bug.cgi?id=7065
