Bug 22198

Summary: erlang-jiffy 0.14.13 fixes CVE-2017-12635 in couchdb
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: Nicolas Lécureuil <mageia>
Status: RESOLVED OLD QA Contact: Sec team <security>
Severity: normal    
Priority: Normal CC: mhrambo3501
Version: 6   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Source RPM: erlang-jiffy-0.14.8-2.mga6.src.rpm CVE:
Status comment:

Description David Walser 2017-12-15 21:04:12 CET 
Fedora has issued an advisory on December 9:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/NBU3DZ6WIJXHKGBWTBRNX43O3QCURUZ2/

We don't have couchdb packaged anymore (this package was imported for ejabberd), but if anyone is using it locally they may be affected by this issue (I don't know what impact it has on ejabberd), so we should probably update it.
David Walser 2019-05-13 04:15:43 CEST

Component: RPM Packages => Security
QA Contact: (none) => security

Comment 1 Mike Rambo 2019-11-06 13:17:35 CET 
Mageia 6 is EOL.

Resolution: (none) => OLD
CC: (none) => mrambo
Status: NEW => RESOLVED