An integer underflow in the DDS loader of Blender leads to an out-of-bounds read, possibly allowing an malicious user to read sensitive data using a crafted DDS image file. This flaw affects Blender versions before 2.83.19, 2.93.8 and 3.1.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
blender blender |
||
debian debian linux 9.0 |
||
debian debian linux 10.0 |