Gentoo Linux Security Advisory 201001-7 – An untrusted search path vulnerability in Blender might result in the execution of arbitrary code. Steffen Joeris reported that Blender’s BPY_interface calls PySys_SetArgv() in such a way that Python prepends sys.path with an empty string. Versions less than 2.48a-r3 are affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/85095/glsa-201001-07.txt
Source: https://packetstormsecurity.com/files/85095/Gentoo-Linux-Security-Advisory-201001-7.html