Albin Eldstål-Ahrens

**Name of the Vulnerable Software and Affected Versions** libinput version 1.20.1 **Description** A format string vulnerability was found in libinput, related to the use of uncontrolled format strings in the evdev log msg function. This vulnerability can be exploited to execute arbitrary code with elevated privileges, particularly when the X-server is run with root privileges. The issue affects environments based on X.Org and Wayland and can be exploited through local device connections or manipulations with Bluetooth devices. **Recommendations** For libinput version 1.20.1, consider updating to a newer version that contains a fix for this vulnerability. As a temporary workaround, restrict access to the evdev log msg function to minimize the risk of exploitation. Avoid using the `evdev log msg` function in the affected API endpoints until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Blender versions prior to 2.83.19 Blender versions prior to 2.93.8 Blender versions prior to 3.1 **Description** An integer underflow in the DDS loader of Blender leads to an out-of-bounds read, possibly allowing an attacker to read sensitive data using a crafted DDS image file. **Recommendations** For versions prior to 2.83.19, update to version 2.83.19 or later. For versions prior to 2.93.8, update to version 2.93.8 or later. For versions prior to 3.1, update to version 3.1 or later.

**Name of the Vulnerable Software and Affected Versions** Blender versions prior to 2.83.19 Blender versions prior to 2.93.8 Blender versions prior to 3.1 **Description** An integer overflow in the processing of loaded 2D images leads to a write-what-where vulnerability and an out-of-bounds read vulnerability, allowing an attacker to leak sensitive information or achieve code execution in the context of the Blender process when a specially crafted image file is loaded. **Recommendations** For versions prior to 2.83.19, update to version 2.83.19 or later to resolve the issue. For versions prior to 2.93.8, update to version 2.93.8 or later to resolve the issue. For versions prior to 3.1, update to version 3.1 or later to resolve the issue. As a temporary workaround, consider restricting the loading of specially crafted image files until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Blender versions 2.93.8 through 3.x **Description** The issue is related to a missing bounds check in the image loader, leading to out-of-bounds heap access. This allows an attacker to cause denial of service, memory corruption, or potentially code execution. The attacker can exploit this issue remotely to access confidential data, compromise its integrity, and cause service disruption. **Recommendations** For Blender versions 2.93.8 through 3.x, update to a version that includes the fix for the missing bounds check in the image loader. As a temporary workaround, consider restricting the use of the image loader in Blender until a patch is available.