Bug 22404

Summary: pngcrush new security issue CVE-2015-7700
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: RĂ©mi Verschelde <rverschelde>
Status: RESOLVED OLD QA Contact: Sec team <security>
Severity: normal    
Priority: Normal CC: marja11
Version: 5   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Source RPM: pngcrush-1.7.84-1.mga5.src.rpm CVE:
Status comment: Fixed upstream in 1.7.87

Description David Walser 2018-01-16 13:57:01 CET 
openSUSE has issued an advisory on January 15:
https://lists.opensuse.org/opensuse-updates/2018-01/msg00042.html

The issue was fixed upstream in 1.7.87.
Comment 1 Marja Van Waes 2018-01-16 15:25:25 CET 
Assigning to the registered pngcrush maintainer.

Component: RPM Packages => Security
QA Contact: (none) => security
Assignee: bugsquad => rverschelde
CC: (none) => marja11

David Walser 2018-02-02 18:11:02 CET

Status comment: (none) => Fixed upstream in 1.7.87

Comment 2 Marja Van Waes 2018-10-02 10:29:24 CEST 
Did didn't get fixed for Mga5, but 6 is OK

Resolution: (none) => OLD
Status: NEW => RESOLVED