Feisty is not vulnerable as the script was removed again in blender 2.43. According to http://lists.alioth.debian.org/pipermail/pkg-blender-maintainers/2007-March/000191.html the script was introduced in blender 2.42 (I've also check blender in dapper and breezy and couldn't find such a named file).
Debian removed this file in the uploads to unstable and testing as fix. See http://packages.qa.debian.org/b/blender/news/20070328T104704Z.html http://packages.qa.debian.org/b/blender/news/20070327T220204Z.html http://lists.alioth.debian.org/pipermail/pkg-blender-maintainers/2007-March/000189.html As blender 2.42 is not part of Debian stable, they don't need to fix it there. -- Debdiff for CVE-2007-1253 for blender in edgy https://launchpad.net/bugs/99062 -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
