CVE-2008-1102: Radiance RGBE Buffer Overflow when processing (*.hdr) files. CVE-2008-1103: Temporary file issues SAID: SA29818 (http://secunia.com/advisories/29818/) Credit: Stefan Cornelius, Secunia Research Upstream contacted Please note that this issue is under embargo until 2008-04-30. Do not commit anything to CVS and keep any information confidential until that date.
CVE-2008-1102 appears to be public now SECUNIA advisory: http://secunia.com/advisories/29818/ SVN Changelog for CVE-2008-1102: http://projects.blender.org/plugins/scmsvn/viewcvs.php/trunk/blender/source/blender/imbuf/intern/radiance_hdr.c?root=bf-blender&view=log I did not see anything about -1103 yet.
Opening since all info in here is public, but marking as a dupe. *** This bug has been marked as a duplicate of bug 219008 ***